[Dshield] LaBrea log analysis

McKinlay, Ken ken.mckinlay at dy4.com
Fri Mar 15 20:33:31 GMT 2002


Try the attached script. I had the same problem and contacted Tom to get the
correct strings to look for.

Ken McKinlay, GCIA
Network Security, Dy 4 Systems
613-599-9199 x5506
ken.mckinlay at dy4.com

> -----Original Message-----
> From: Ed Truitt [mailto:ed.truitt at etee2k.net]
> Sent: Friday, March 15, 2002 10:36
> To: list at dshield.org
> Subject: [Dshield] LaBrea log analysis
> Since I installed LaBrea earlier this week, I have been 
> looking for a log
> analysis program for it.  I did download the LaBrea-stats.py 
> that was linked
> from the LaBrea page, but I can't make it produce any usable 
> output (it
> seems not to recognize the log entry format of this version 
> of LaBrea.)  So,
> I have 2 questions:
> 1) Does anyone have, or know of, an analysis program for 
> LaBrea logs that
> works (produces reports on LaBrea activities)?
> 2) Does anyone have, or know of, the code that produces the 
> "Look at who is
> in the Pit" web pages (the demo pages)?  I would love to put 
> that one up on
> my own site.
> Cheers,
> Ed Truitt
> PGP fingerprint:  5368 D25E 468C A250 9833  CCD6 DBAE 9C25 02F9 0AB9
> http://www.etee2k.net
> http://www.bsatroop148.org
> "Note to spammers:  my 'delete' key is connected to YOUR ISP.
>  Also, if you send me UCE, I reserve the right to post your spew
> on my Web site, with the appropriate color commentary, so that
> others may have a good laugh at your expense."
> _______________________________________________
> Dshield mailing list
> Dshield at dshield.org
> To change your subscription options (or unsubscribe), see: 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: LaBrea-stats.py
Type: application/octet-stream
Size: 5136 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/list/attachments/20020315/00f348ef/LaBrea-stats.obj

More information about the list mailing list