I recommend webalizer. IMHO that's a good log file analysis
tool. Available for IIS, Apache, et cetera.
Breno Brand Fernandes
----- Original Message -----
From: "Anja Hofmann" <anja.hofmann () ub uni-tuebingen de>
To: <security-basics () securityfocus com>
Sent: Tuesday, June 03, 2008 7:37 AM
Subject: Web log file analysis tool
| Currently, I'm looking for a web log file analysis tool which does
| cause too much traffic/load on our LAMPP web servers.
| I've tried hobbit monitor (http://*hobbit*mon.sourceforge.net), but
| disappointed, since the script I needed to search for suspicious
| patterns (bb-msgs.pl) was not part of the main package.
| I've also installed awstats (http://awstats.sourceforge.net/) which
| worms.pm to look for suspicious windows worms.
| However, I would love to find a plugin for awstats (or another
| that could also detect XSS attempts - as far as this is possible
| only Apache log files.
| Thank you very much in advance.
| Yours sincerely,
| Anja Hofmann