374 projects tagged "Log Analysis"
Updated 21 May 2013
360-FAAR Firewall Analysis Audit and Repair
| Pop | 931.61 |
|---|---|
| Vit | 66.46 |
360-FAAR (Firewall Analysis Audit and Repair) is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate, and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA, or ScreenOS commands. It is all contained in one file. It can read policy and logs for: Checkpoint FW1 (in odumper.csv / logexport format), Netscreen ScreenOS (in get config / syslog format), and Cisco ASA (show run / syslog format). It uses both inclusive and exclusive CIDR and text filters, permitting you to split large policies into smaller ones for virutalization at the same time as removing unused connectivity. It supports policy to log association, object translation, rulebase reordering and simplification, rule moves, and duplicate matching automatically. It allows you to seamlessly move rules to where you need them. 'print' mode creates a spreadsheet for your audit needs with one command.
Updated 18 May 2013
W3Perl
| Pop | 592.83 |
|---|---|
| Vit | 229.09 |
W3Perl is a Web logfile analyzer. But it can also read FTP/Squid or mail logfiles. It allows most statistical data to be ouput with graphical and textual information. An administration interface is available to manage the package.
Updated 28 Apr 2013
lnav
| Pop | 194.63 |
|---|---|
| Vit | 14.65 |
The Logfile Navigator, lnav for short, is a curses-based tool for viewing and analyzing log files. The value added by lnav over text viewers or editors is that it takes advantage of any semantic information that can be gleaned from the log file, such as timestamps and log levels. Using this extra semantic information, lnav can do things like interleaving messages from different files, generate histograms of messages over time, and provide hotkeys for navigating through the file. These features are meant to allow the user to quickly and efficiently focus on problems.
Updated 09 Apr 2013
ttyrpld
| Pop | 149.53 |
|---|---|
| Vit | 4.98 |
ttyrpld is a multi-OS kernel-level tty key and screen logger. Recorded sessions can be followed live or replayed at a later time. Supported platforms are Linux, Solaris, FreeBSD, NetBSD, and OpenBSD.
Updated 01 Apr 2013
superseriousstats
| Pop | 214.49 |
|---|---|
| Vit | 23.83 |
superseriousstats is a small and efficient program for creating a Web page with statistics from various types of IRC logs. It keeps track of its parse history and only processes new activity before storing any accumulated data in a SQLite or MySQL database. It is suitable for high volume IRC channels and large log archives, and is relatively easy to integrate with IRC services (e.g. bots) that interact with the database and provide last seen information and many other statistics directly in your channel.
Updated 04 Mar 2013
Fido File Monitor
| Pop | 158.52 |
|---|---|
| Vit | 5.47 |
Fido is a multi-threaded file watcher which searches files in real time for user-defined patterns. When it locates a match, it runs a user-defined program. It is useful for monitoring log files for issues and responding to them. It was designed to recognize log file rotation and start monitoring from the beginning of the new file.
Updated 26 Feb 2013
Octopussy
| Pop | 521.97 |
|---|---|
| Vit | 1,073.86 |
Octopussy is a solution to manage your logs (also frequently called a SIM/SEM/SIEM Solution). Basically, it stores your logs, produces reports, and raises alerts.
Updated 30 Jan 2013
pmacct
| Pop | 447.08 |
|---|---|
| Vit | 51.97 |
pmacct is a small set of passive network monitoring tools to account, filter, classify, aggregate, and export IPv4 and IPv6 traffic. A pluggable and flexible architecture allows storing collected network data in memory tables, RDBMSs (MySQL, SQLite, PostgreSQL, BDB), and flat files, and also export via IPFIX, NetFlow, or sFlow protocols to remote collectors. pmacct features fully customizable historical data breakdown, sampling, BGP correlation, tagging, and triggers. Libpcap, ULOG, sFlow v2/v4/v5, NetFlow v1/v5/v7/v8/v9, and IPFIX are supported data capturing methods.
Updated 30 Jan 2013
Squid Analyzer
| Pop | 236.94 |
|---|---|
| Vit | 16.51 |
Squid Analyzer parses the native access log format of the Squid proxy and reports general statistics about hits, bytes, users, networks, top URLs, and top second level domains. Statistic reports are oriented toward user and bandwidth control; this is not a pure cache statistics generator.
Updated 26 Jan 2013
Vuurmuur
| Pop | 413.88 |
|---|---|
| Vit | 42.40 |
Vuurmuur is a firewall manager for Linux that supports IPv4, IPv6, and traffic shaping. It has powerful monitoring features for logging and live connections. It can be managed entirely through an Ncurses GUI, on the console, or through SSH.
