Re: [logs] Log Analysis Book

From: durnieat_private
Date: Thu Jan 30 2003 - 12:18:54 PST

  • Next message: Rainer Gerhards: "RE: [logs] sql-worm and the address generator"

    I would recommend Stephen Northcutt's Intrusion Signatures and Analysis" as well as Mike Schiffman and Bill Pennington's  "Hackers Challenge 1 & 2" for reading material...
    Also, anybody on the list out there using GuradedNet's NeuSecure for log consolidation and event correlation? I just finished my implementation this week and am starting to dig into it...
    Chris Kirschke
    Sr Security Analyst
    Silicon Valley Bank
    On Thu, 30 Jan 2003 05:38:55 -0800 "Bartlett, Mark A." <Mark.A.Bartlettat_private> wrote:
    >Hello all,
    >Are there any books out there that anyone can recommend that may
    >different log types and the meanings behind all the fields?
    >If no one can think of any books for that subject what about Log
    >Analysis.  A book that may offer steps on log reduction, techniques
    >"finding the needle in the haystack", etc.
    >Mark Bartlett
    Version: Hush 2.2 (Java)
    Note: This signature can be verified at
    -----END PGP SIGNATURE-----
    LogAnalysis mailing list

    This archive was generated by hypermail 2b30 : Thu Jan 30 2003 - 14:10:45 PST