SecurityFocus

log analyser May 28 2009 11:25PM
sec nd-f com (7 replies)

Re: log analyser Jun 11 2009 03:38AM
TT-SEC (secfoc tigerteam net) (1 replies)

Re: log analyser Jun 12 2009 03:32PM
Richard Thomas (austindad gmail com) (1 replies)

Multi thread Jul 02 2009 05:42PM
Antão Miguel Chantre (chantre sisp cv) (1 replies)

Re: Multi thread Jul 08 2009 08:46PM
Suramya Tomar (security suramya com)

Re: log analyser Jun 02 2009 02:24AM
aditya mukadam (aditya mukadam gmail com) (3 replies)

RE: log analyser Jun 06 2009 02:50PM
Ramki B Ramakrishnan (bramkie gmail com)

RE: log analyser Jun 04 2009 05:27AM
Tariq Naik (Tariq_Naik symantec com)

RE: log analyser Jun 02 2009 06:03PM
Amardeep Singh (Amardeep_Singh symantec com)

RE: log analyser Jun 01 2009 07:30PM
John Lightfoot (jlightfoot gmail com)

For Windows, log parser is a great analysis tool, although it's not really
designed for real-time monitoring.

http://www.microsoft.com/DownLoads/details.aspx?FamilyID=890cd06b-abf8-4
c25-
91b2-f8d975cf8c07&displaylang=en

-----Original Message-----
From: listbounce (at) securityfocus (dot) com [email concealed] [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On
Behalf Of sec (at) nd-f (dot) com [email concealed]
Sent: Thursday, May 28, 2009 7:26 PM
To: security-basics (at) securityfocus (dot) com [email concealed]
Subject: log analyser

Hi,

can someone of you recommend a good enterprise log analyser solution? i have
to collect, corrolate and analyse about 1200 windows machines and 200 linux
boxes. i want to do this in real-time, trigger actions (like email
notification), make sense out of e.g. ten failed login attempts following
the one successful etc.

any hint would be helpful
thanks
andy

------------------------------------------------------------------------

This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means you
pass the exam. Gain a laser like insight into what is covered on the exam,
with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------

------------------------------------------------------------------------

This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------

[ reply ]

Re: log analyser Jun 01 2009 05:22PM
Jared Curtis (jared w00ttech com)

Re: log analyser Jun 01 2009 04:58PM
giuseppe fuggiano gmail com

Re: log analyser Jun 01 2009 04:22PM
Abilash Praveen (abilash praveen gmail com)

RE: log analyser Jun 01 2009 04:05PM
Hindley Nick (Nick Hindley hfbp co uk) (1 replies)

RE: log analyser Jun 01 2009 05:17PM
Todd Neal (ToddNeal tnwinc com)