Bookmarks - wr0ng.name
Tag cloud
Picture wall
Daily
Plugins
  • ► Play Videos
RSS Feed
  • RSS Feed
  • ATOM Feed
  • Daily Feed
Filters

Links per page

  • 20 links
  • 50 links
  • 100 links

Display

Filter untagged links
13 results tagged logs  ✕
Event Processing Pipeline https://www.ibm.com/support/pages/event-processing-pipeline
Tue 24 Sep 2019 11:49:36 AM CEST
QRCode
archive.org
General overview of the Event Pipeline and Processes
documentation ibm knowledge logs qradar security siem tech
Downloads | Syslog Watcher https://syslogwatcher.com/downloads/
Tue 24 Sep 2019 11:45:29 AM CEST
QRCode
archive.org
Syslog Watcher installs a dedicated syslog server, integrating log data from multiple network devices into a single, easily manageable and accessible place. Collecting and analyzing syslogs is essential for maintaining network stability and auditing network security.
download logs security tools
Proofpoint On Demand Email Security Add-on | Splunkbase https://splunkbase.splunk.com/app/4327/
Tue 16 Jul 2019 09:44:32 AM CEST
QRCode
archive.org
Proofpoint on Demand customers can use this add-on to collect email security logs that can be stored and indexed in Splunk to search, report and investigate email delivery. This technology add-on maps the message and mail logs to Splunk Common Information Model (CIM) for email.
applications it logs plugin proofpoint security siem splunk
SIEM API - Proofpoint, Inc. https://help.proofpoint.com/Threat_Insight_Dashboard/API_Documentation/SIEM_API
Tue 16 Jul 2019 09:43:17 AM CEST
QRCode
archive.org
Security Information and Event Management (SIEM) solutions are used by many organizations to identify and correlate various security events occurring in their point products. Examples of SIEM products include HP's ArcSight, IBM's QRadar, and Splunk. 

API it logs proofpoint security siem tech
Creating a Custom DSM - QRadar App Development https://developer.ibm.com/qradar/creating-custom-dsm/
Mon 15 Jul 2019 05:21:56 PM CEST
QRCode
archive.org
thumbnail
The DSM Editor is a new capability introduced in QRadar 7.2.8 that allows you to create a custom parser for getting your events into QRadar in a usable and user friendly way. This page will give an overview of how to use the editor and then create an extension to share your creation.
howto ibm it knowledge logs online parsing productivity qradar security
Identifying Incidents Using Firewall and Cisco IOS Router Syslog Events - Cisco https://www.cisco.com/c/en/us/about/security-center/identify-incidents-via-syslog.html
Fri 12 Jul 2019 05:48:41 PM CEST
QRCode
archive.org
thumbnail
Syslog messages from transit network devices can provide insight into and context for security events that may not be available from other sources. This insight aids in determining the validity and extent of an incident. Within the context of a security incident, administrators can use syslog messages to understand communication relationships, timing, and, in some cases, the attacker's motives and/or tools. These events should be considered complementary and should be used in conjunction with other forms of network monitoring that may already be in place.
cisco equipments hardware it knowledge logs networking online security
glogg — glogg - the fast, smart log explorer http://glogg.bonnefon.org/index.html
Mon 02 Jul 2018 11:50:45 AM CEST
QRCode
archive.org
glogg is a multi-platform GUI application to browse and search through long or complex log files. It is designed with programmers and system administrators in mind. glogg can be seen as a graphical, interactive combination of grep and less.
analysis free linux logs security tools windows
Spotting the Adversary with Windows Event Log Monitoring (v2) https://www.iad.gov/iad/library/ia-guidance/security-configuration/applications/spotting-the-adversary-with-windows-event-log-monitoring.cfm
Mon 19 Jun 2017 02:26:59 PM CEST
QRCode
archive.org
This paper focuses on using the built-in tools already available in the Microsoft Windows operating system (OS). Central event log collection requires a Windows Server operating system version 2003 R2 or above. Many commercially available tools exist for central event log collection. Using a Windows Server 2008 R2 or above server version is recommended. There are no additional licensing costs for using the event log collection feature. The cost of using this feature is based on the amount of additional storage hardware needed to support the amount of log data collected. This factor is dependent on the number of workstations within the local log collection network.
analysis bestpractices logs security windows
Softpanorama Switchboard http://www.softpanorama.org/switchboard.shtml
Thu 13 Apr 2017 02:47:34 PM CEST
QRCode
archive.org
The main purpose of the site is to promote "slightly skeptical" approach to IT, to stimulate critical thinking about system administration and software development as professions. To increase resistance to media brainwashing. Skepticism is generally any questioning attitude towards knowledge, facts, or opinions/beliefs stated as facts, or doubt regarding claims that are taken for granted elsewhere.
admin configuration engineering fun integration knowledge logs security software systems tech
E.T. Proxy Logs Checker [ETPLC] http://etplc.org/
Fri 07 Apr 2017 04:50:15 PM CEST
QRCode
archive.org
Open Source project for finding the Threats on Proxy or Web Server Logs with Emerging Threats Open rules

It's a production ready version, all feedback is welcome.
analysis logs opensource repository security tools
RSA Supported Event Sources | RSA Link https://community.rsa.com/community/products/netwitness/parser-network/event-sources
Wed 01 Mar 2017 03:56:04 PM CET
QRCode
archive.org
The following is an alphabetical list of supported event sources that are available in RSA NetWitness Logs.
analytics community configuration knowledge list logs security siem
Windows Security Log Encyclopedia https://www.ultimatewindowssecurity.com/securitylog/encyclopedia/Default.aspx
Tue 28 Feb 2017 03:33:46 PM CET
QRCode
archive.org
Web property of Monterey Technology Group, Inc. devoted to spreading knowledge and understanding of Windows Security, IT Audit and Compliance with exclusive content from Randy Franklin Smith.
analysis knowledge logs security windows
RSA NetWitness Suite | RSA Link https://community.rsa.com/community/products/netwitness/content?filterID=contentstatus%5Bpublished%5D~objecttype~objecttype%5Bdocument%5D&start=20
Fri 03 Feb 2017 02:25:01 PM CET
QRCode
archive.org
Our mission is to be the place to go for collaboration and best practices among customers, partners, and industry experts. We built this resource with your needs in mind, and we hope you return often, contribute, provide feedback, and share your thoughts with us. We are listening.
analysis analytics community knowledge logs packets security siem
758 links
Shaarli - The personal, minimalist, super-fast, database free, bookmarking service by the Shaarli community - Theme by kalvn