GUI for Snort XML Logs written with OpenBSD users

Contributed by jose on 2003-02-20 from the XMLized-packets dept.

Sleepy writes:

"ACID-XML is an application, developed 80% of the time on OpenBSD, and runs on OpenBSD and it will give you a very nice view of those snort XML logs. the tarball is available from http://www.maximumunix.org , it contains a i386 binary + sources and Makefile if you wanna modify and compile. it even contains the .ui file so you can adjust the GUI to your preference with designer. wanna see how it looks? http://www.maximumunix.org/images/ACIDXML-UNIX.png Run OpenBSD on your desktop :)"

I've seen various Snort front ends and some are better than others. The diversity is good, though, and XML adds some flexibility that many of the others lack.

(Comments are closed)

Comments

By Eric Bullen () ericb_obsd@thedeepsky.com on 2003-02-20 18:17 http://www.thedeepsky.com

I am using a reporting tool that runs every minute in cron (low impact). This generates a nice report that is sent via email. I wrote this myself, and figure I should share it with others (I love the layout obviously). Anyway, enjoy, and I hope others like it as well...

Here's the file:
http://www.thedeepsky.com/files/snort_mon.pl

-Eric
By Anonymous Coward () on 2003-02-21 18:20

Did anyone download this stuff?did you find it worthy?do you think converting pflogs to XML and integrating it with the IDS a good idea?
can the sysadmin sect of the *NIX community point out a direction a developer who would like to contribute can take?any apps you thought are important but dont exist yet?

Latest Articles

Wed, Apr 24
- 04:35 Game of Trees 0.98 released (0)
Tue, Apr 23
- 05:25 pfctl(8) and systat(8) to display fragment reassembly statistics (0)
Thu, Apr 18
- 05:05 Coming soon to a -current system near you: parallel raw IP input (0)
Wed, Apr 17
- 05:33 In -current, default write format for tar(1) changed to "pax" (12)
Wed, Apr 10
- 18:50 OpenSMTPD 7.5.0p0 Released (2)
Tue, Apr 09
- 04:49 20 years since "and we're just starting": undeadly.org turns 20 (2024-04-09) (13)
Fri, Apr 05
- 06:16 OpenBSD 7.5 released (3)
Thu, Mar 28
- 18:18 LibreSSL 3.8.4 and 3.9.1 released (0)
Tue, Mar 12
- 06:53 OpenSSH 9.7/9.7p1 released! (0)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]