Home page logo

snort logo Snort mailing list archives

Filename in alert_CSV
From: "Parker, Jonathan E." <jep () g-c-i net>
Date: Thu, 13 Jun 2013 20:24:44 +0000

I am processing multiple .pcap files using the --pcap-dir option, and have my snort.conf setup to put alerts in a csv 
file using alert_CSV.  After processing with Snort I load the results into a MySQL database.  I want to include the 
filename of the pertinent .pcap for each alert, but there does not seem to be an option for that for the csv output 
module.  Can anyone suggest a way to do this?

Thanks in advance - Jon
This SF.net email is sponsored by Windows:

Build for Windows Store.

Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
Snort-users list archive:

Please visit http://blog.snort.org to stay current on all the latest Snort news!

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]