[Oisf-users] Parsing of HTTP_LOG
Peter Manev
petermanev at gmail.com
Thu Sep 27 22:09:47 UTC 2012
Hi,
I am not sure if you have seen it:
https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Custom_http_logging
But there is a possibility for custom (Apache ) logging - so actually any
tool/software that can parse Apache logs would be able to do the job for
you.
thanks
On Thu, Sep 27, 2012 at 9:41 PM, Martin Holste <mcholste at gmail.com> wrote:
> ELSA will handle this out of the box:
> http://code.google.com/p/enterprise-log-search-and-archive/ You will
> need to use the "unix_dgram" option and log to /dev/log, then have a
> rule for your local syslogger to send to ELSA.
>
> On Thu, Sep 27, 2012 at 11:03 AM, Brant Wells <bwells at tfc.edu> wrote:
> > Hi All,
> >
> >
> >
> > I was just wondering if there was anyone doing any kind of log parsing
> for
> > the HTTP_LOG file generated by Suricata?
> >
> >
> >
> > If you are, what app are you using, et al?
> >
> >
> >
> > Thanks!
> > ~Brant
> >
> >
> >
> >
> > _______________________________________________
> > Oisf-users mailing list
> > Oisf-users at openinfosecfoundation.org
> > https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> >
> _______________________________________________
> Oisf-users mailing list
> Oisf-users at openinfosecfoundation.org
> https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>
--
Regards,
Peter Manev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20120927/ed7fb818/attachment-0002.html>
More information about the Oisf-users
mailing list