|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: [snort] New snort tool
From: Martin Roesch (roesch
hiverworld.com)Date: Mon Mar 06 2000 - 14:47:23 CST
- Next message: Mullen, Patrick: "RE: [snort] Back home...."
- Previous message: Martin Roesch: "Re: [snort] Livelock with "nocase""
- In reply to: Andrew R. Baker: "[snort] New snort tool"
- Reply: Martin Roesch: "Re: [snort] New snort tool"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Thanks Andrew, I'll make an attempt to take a look at this
today/tonight! (I like that this handles the -A output, no one has
really done that yet)
-Marty
"Andrew R. Baker" wrote:
>
> Attached is a perl script that reads a snort alert file and creates a
> sorted html page of the different types of alerts.
> Note: this is intended for files created from the "-A fast" option,
> if it is desired I can make it read syslog alerts too
>
-- Martin Roesch <roesch
- Next message: Mullen, Patrick: "RE: [snort] Back home...."
- Previous message: Martin Roesch: "Re: [snort] Livelock with "nocase""
- In reply to: Andrew R. Baker: "[snort] New snort tool"
- Reply: Martin Roesch: "Re: [snort] New snort tool"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]