Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Sun
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Dealing with BSM Audit Logs

from [auditd] Network Security [Permanent Link]
Subject: Re: Dealing with BSM Audit Logs
Date: Thu, 8 Mar 2007 00:36:45 -0800 (PST) 



Crist J. Clark-2 wrote:


Anyway, I am in search of tools to deal with audit logs. For
example, I suspect that this noise is from ufsdump/restore,
but this is hard to back out. It'd be sweet to have a tool
where I could pull out all of the logs related to a process,
including its children, and look at them. Something interactive
would be so-o cool. Using auditreduce(1M) and praudit(1M) with
grep, perl, and awk only goes so far, especially when it
comes to GBs of logs.

Are there tools out there for this? Any leads, from Sun, free
stuff, your scripts, or third-party commercial, would help.



We are working on an audit trail tool which will be available as beta
shortly:
http://auditanalyzer.com/ http://auditanalyzer.com/ 
-- 
View this message in context: 
http://www.nabble.com/Dealing-with-BSM-Audit-Logs-tf2477062.html#a9370549
Sent from the Security - Sun mailing list archive at Nabble.com.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: Dealing with BSM Audit Logs, auditd <=
Next by Date:  Sun Studio 11: C++ 5.8 Compiler, neelabhsharma1
Next by Thread:  Sun Studio 11: C++ 5.8 Compiler, neelabhsharma1
Indexes:  [Date] [Thread] [Top] [All Lists]