[logs] Eventlog to syslog
Daniel Cid
dcid at ossec.net
Fri Feb 29 12:33:19 PST 2008
Hi Marcelo,
I would also add OSSEC ( http://www.ossec.net ). You can use it to
forward your Windows eventlog (plus IIS, anti virus and many other log
files) to any Unix system
running ossec. It does not uses syslog, since it encrypts/compresses
the logs while in transit, but you get them in clear-text on the other
end...
Hope it helps.
*oh, I am the author of ossec, so my opinion is always biased :)
--
Daniel B. Cid
dcid ( at ) ossec.net
On 2/29/08, Anton Chuvakin <anton at chuvakin.org> wrote:
> Snare, Project LASSO (http://sourceforge.net/projects/lassolog), DAD
> (http://sourceforge.net/projects/lassie), ntsyslog (whereve), what
> else is out there?
>
>
> On Fri, Feb 29, 2008 at 4:59 AM, Marcelo de Souza
> <marcelo at marcelosouza.com> wrote:
> > Loganalysis folks,
> >
> > Which tool do you really recommend for windows eventlog to unix
> > syslog translation?
> >
> > I've been thinking about Snare, but I'd like to hear your opinion.
> >
> > Thanks in advance.
> >
> > --
> > Marcelo de Souza
> > _______________________________________________
> > LogAnalysis mailing list
> > LogAnalysis at loganalysis.org
> > http://www.loganalysis.org/mailman/listinfo/loganalysis
> >
>
>
>
>
> --
> Anton Chuvakin, Ph.D., GCIA, GCIH, GCFA
> http://www.chuvakin.org
> http://chuvakin.blogspot.com
> http://www.info-secure.org
>
> _______________________________________________
> LogAnalysis mailing list
> LogAnalysis at loganalysis.org
> http://www.loganalysis.org/mailman/listinfo/loganalysis
>
More information about the LogAnalysis
mailing list