Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Basics: Re: Any host based and application based log analysis tools around

Re: Any host based and application based log analysis tools around

From: Daniel Cid <danielcid_at_yahoo.com.br>
Date: Tue, 1 Mar 2005 13:11:30 -0300 (ART)

Hi Ricci,

OsAudit (www.ossec.net/osaudit) can *solve your
problem. You can install the osaudit-client on your
servers and forward almost any kind of log to the
osaudit-server for analysis. It also uses encryption
to forward the logs (blowfish). In the server, you can
create any kind of rule you want to analyze the
logs...

*right now we don't have any default rule for oracle,
peoplesoft, etc.

*If you are interested, you can send some log samples
to us so that we can create more and better rules.

Daniel B. Cid, CISSP
daniel @ ( at ) gmail.com
http://www.ossec.net

> --- ricci <ricci_at_cs.ust.hk> escreveu:
> Hello All,
>
> Do you aware of any host based and application
> based log analysis tools
> around? I'm looking for some web log, syslog and
> Windows Event Log, and
> application logs including SAP, Oracle Finance,
> Siebel and PeopleSoft log
> analysis tools.
>
> Are you aware of any tools, so I can use that for
> log analysis or even
> intrusion detection purpose.
>
> THanks.
>
> Ricci
>
>

        
        
                
_______________________________________________________
Yahoo! Acesso Grátis - Instale o discador do Yahoo! agora. http://br.acesso.yahoo.com/ - Internet rápida e grátis
Received on Mar 01 2005

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]