We did a review of SNARE. While intentions of it are good, there are some programming issues that prevented us from using it. I will check to see if we can release our findings publicly and if so, post the problems here.

(but consider this a heads up. A review of the code by yourself may reveal our findings.)

> Hi.
>
> Try http://www.intersectalliance.com they have a tool called snare looks nice and is open source. I don't now how good it is because I did't test it yet. But from the functionality point of view it looks pretty cool
> cu
> (C)arlos
>
> > -----Ursprüngliche Nachricht-----
> > Von: James Fleming [mailto:jamesfleming94588yahoo.com]
> > Gesendet: Freitag, 26. Juli 2002 20:46
> > An: webappsecsecurityfocus.com
> > Betreff: Web Server Log Files - Security Events Analysis
> >
> >
> > I am looking to analyze security events in the my
> > presentation layer (web server) and wondered if anyone
> > has any good experience they can share ?
> >
> > I am logging a lot of data so I capture all GETS's etc
> > which enables me to see XSS and SQL injection type
> > attacks.
> >
> > Are there any open source tools that will do this for
> > me ?
> >
> > Anything that will send me an alert in near realtime
> > when an event gets written in the log ?
> >
> > If there are any commercial tools can you send them to
> > me off-line from the list (moderator: see I read the
> > charter thread ;-)
> >
> > __________________________________________________
> > Do You Yahoo!?
> > Yahoo! Health - Feel better, live better
> > http://health.yahoo.com
> >
> >
>
>

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]