[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Windows 2003 Logging/Log Analysis Tool

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Windows 2003 Logging/Log Analysis Tool
From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
Date: Thu, 17 Nov 2005 11:50:28 -0500

I’m looking for recommendation on what are the better log analysis softwares around that’re capable of generating good logs for;

* IIS 6.0 * NetApp NetCache 5.x * Microsoft ISA RRAS Are there also Log Agents available for System so that all the logs are contributed to a Centralized Log Server?

My favorite way to do this is just send it via syslog to a UNIX box, then use grep/perl/whatever to post-process it. If you use syslog-ng you can put the events into MySQL which opens some additional possibilities.

Best way to get windows logs (event logs, text based files, etc) is EventReporter (www.adiscon.de). It's cheap .. $30/license I think.

Regards,

Michael Holstein CISSP GCIA
Cleveland State University
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Windows 2003 Logging/Log Analysis Tool
  - From: John Goh

Prev by Date: RE: [Full-disclosure] Windows 2003 Logging/Log Analysis Tool
Next by Date: [Full-disclosure] SCOSA-2005.49 OpenServer 5.0.7 : Mozilla Multiple Vulnerabilities
Previous by thread: RE: [Full-disclosure] Windows 2003 Logging/Log Analysis Tool
Next by thread: Re: [Full-disclosure] Windows 2003 Logging/Log Analysis Tool
Index(es):
- Date
- Thread