Search Results for "log analysis tools"

Icinga is a monitoring system that checks the availability of your network resources, notifies users of outages, and generates performance data for reporting. Scalable and extensible, Icinga can monitor large, complex environments across multiple locations. This includes your data center as well as your private, public, or hybrid clouds. Icinga 2 is the monitoring server and requires Icinga Web 2 on top in your Icinga Stack. The configuration can be easily managed with either the Icinga...

To diagnose a problem or simply to study the internal flow of information in an ethercat fieldbus, one of the common practices is to capture the flow of ethercat datagrams with an ethernet sniffer such as Wireshark (www.wireshark.org). Wireshark provides some filters to facilitate data analysis but the high amount of recorded information still makes an analysis complicated for many people who do not have a very deep knowledge of the ethercat protocol and Wireshark tools. Ecang can help these people! Ecang extracts the list of the slaves managed and the PDOs exchanged in an ethercat network directly from the network configuration file (ENI file) .xml, thanks to this data it can read numerous information from the file generated by the sniffer (.pcapng) and transfers them to a comma-separated values ​​file (.csv) already applying a first level of validation.

...https://www.snaresolutions.com/try-snare-for-free/ Snare Enterprise was created to keep up with the fast paced security software market. It started with the desire to create premium logging and SIEM tools that were agnostic by nature so they could be used to boost any SIEM architecture regardless of third party developers. In fact, the agnostic nature allows it to bridge gaps between multiple SIEM implementations across business units. For more on use cases, check out the Intersect Alliance website. https://www.snaresolutions.com/ Snare Enterprise’s premium features include: - Regulatory Compliance - TLS Encryption - Log Simulcasting - TCP – Guaranteed Log Delivery - USB Device Monitoring - And more! ...

Mars is an open source, cross-platform infrastructure component and official terminal basic component of WeChat. It consists of four main parts: Comm, which contains a basic library, including basic tools like sockets, threads, alarm, message queues, and coroutines; Xlog, which provides high-performance, high-availability, security, and fault-tolerant log functions; SDT which is the network diagnosis module; and STN or signaling transmission network module, the major component of Mars responsible for the small data signaling channel between the terminal and the server. ...

Visual Syslog Server for Windows is a free open source program to receive and view syslog messages. Useful when setting up routers and systems based on Unix/Linux. Visual Syslog Server for Windows has a live messages view: switches to a new received message. Helpful color highlighting. Useful message filtering. Customizable notification and actions. Sources hosted on the GitHub: https://github.com/MaxBelkov/visualsyslog

Project moved here: https://sourceforge.net/projects/syslogserverwindows/

BigPlg allows the collection of the IPv4 Internet routing table which may be viewed by service providers and/or ISP customers to validate IP routing across autonomous systems. Routing updates may also have attributes aliased to become (graph) readable. This function exists to allow the exporting of RIB updates to Splunk, or any such data collector. A beneficial side-effect of collecting BGP routing information is the ability to track BGP updates/events local or remote(upstream). To analyze...

NetMate Meter is a flexible and extensible tool for network measurement. It can be used for accounting, delay/loss measurement, packet capturing. It supports dynamic loadable packet processing and data export modules and a flexible packet classifier.

The goal of this project is to provide a liveCD allowing the user to analyze networks for VoIP installations. This project gives you a global network state.

Ptcap is a Unix daemon that captures traffic packet size, source, destination, and times and saves this data into a postgres (and now ODBC including mysql) database in near real time, from which traffic reports may be made.

The first stage of development is do write a tool to anonymize packet capture files captured with libpcap. After that we will be integrating this with tcpdump to anonymize in real-time and analyze and look for its effect on different IDS's.

Cnc's IP Data Volume Report: Logs IP to IP contact, number of packets, bytes, time of contact, Ethernet too! View via local web interface. Very simple for those who want to view who your computer is contacting the most!

Panoptis plans to create a network security tool (N-IDS) to detect and block DoS and DDoS attacks. The programming language is C++, and the input is being provided by routers.

Dent is a project focused upon network modeling and analysis tools. The project currently supports an OS X, Cocoa-based application and technologies based upon the Mozilla framework.

Universal IP-traffic collector. Can gather data from Cisco IP Accounting / ipcad, Mikrotik, NSG, Revolution routers.

M-ICE is a modular hostbased intrusion detection framework. It is used as middleware to close the gap between IDS research and IDS development. M-ICE consists of various parts that can be connected together by using network-or interprocess-communication

TrUp is a client for the Uptimes Project as started by Wonko for the TriangleOS (http://httpd.chello.nl/w.cools) written in ANSI C without any extra libraries. Supports protcol 5.0.

Live Security/Forensics Linux Distribution, built from scratch and packed full of tools useful for vulnerability analysis, penetration tests, and forensic analysis.

kvolmet is a linux/kde utility to monitor transmitted IP traffic relative to a fixed monthly basis. The utility is intended for users having a subscription for a volume limited internet flatrate (respectively for those wishing to subscribe to one).

The Secure Remote Log Monitor (SRLM) project provides client and server utilities that collect application or system log files from multiple systems over an untrusted network onto a central server for analysis and action.

packet analyser for tcpdump-output designed for KDE

A command line tool written in C++ that analyzes the source files of a C program to represent the pattern of its system calls in terms of a LALR(1) grammar.

This is a Firewall and IDS front-end, the main purpose is simplify configuration of Iptables and Fwsnort and Psad management. The Firewall provides an experimental feature to decide in real-time about each outgoing connection.

chill is a heavy-module-based web-application with a core supporting many features. writing own modules for... everything. modules for webmail, firewall/router-administration, server-administration are planned natively.

Internet Control Firewall Intrusion Detection and Logger for Inbound and Outbound Traffic. Watches Files and Directories, Drive and Memory Protection.