OSPatrol
  • Manual
    • Getting started with OSPatrol
    • OSPatrol Architecture
    • Supported Systems
    • Installation
    • Agents
    • Log monitoring/analysis
    • Syscheck
    • Rootcheck Manual
    • Rules and Decoders
    • Output and Alert options
    • Active Response
  • Frequently asked questions
    • Agents: FAQ
    • Alerts: FAQ
    • OSPatrol: FAQ
    • OSPatrol-WUI: FAQ
    • Syscheck: FAQ
    • When the unexpected happens: FAQ
  • Syntax and Options
    • Regular Expression Syntax
    • Log Analysis Syntax: Rules and Decoders
    • ospatrol.conf: syntax and options
    • agent.conf
    • internal_options.conf: syntax and options
  • Man pages
    • agent-auth
    • agent_control
    • clear_stats
    • list_agents
    • manage_agents
    • ospatrol-agentd
    • ospatrol-agentlessd
    • ospatrol-analysisd
    • ospatrol-authd
    • ospatrol-control
    • ospatrol-csyslogd
    • ospatrol-dbd
    • ospatrol-execd
    • ospatrol-logcollector
    • ospatrol-logtest
    • ospatrol-maild
    • ospatrol-makelists
    • ospatrol-monitord
    • ospatrol-regex
    • ospatrol-remoted
    • ospatrol-reportd
    • ospatrol-syscheckd
    • rootcheck_control
    • syscheck_control
    • syscheck_update
    • util.sh
    • verify-agent-conf
  • Rules/Decoders Documentation
    • Rules Documentation
  • Rootcheck / Syscheck Reference
    • Information about the Beastkit Rootkit
    • Information about the Knark Rootkit
    • Information about Old Rootkits
    • Information about Suspicious files
    • Information about the T.R.K rootkit
    • Information about the Tuxkit Rootkit
  • Log Samples
    • Stuff
  • Glossary
 
OSPatrol
  • Docs »
  • Security Logs
  • Edit on GitHub

Security LogsΒΆ

  • Log samples for Iplog
  • McAfee Logs
  • Modsecurity samples
    • Access denied:
    • Access denied by pattern:
    • Access denied by pattern (invalid user agent):
  • Log samples for the Sidewinder firewall
  • Log samples for Suhosin
  • Symantec Antivirus logs
    • General logs:
    • Log samples of virus detection:
  • Log Samples for Symantec Web Security
    • Generic entries:
    • Session timeout (3=1,2=2):
    • Login success (3=2,2=1):
    • Login failures: (3=2,2=1):
    • URLs:
    • Example of ossec parsing it:
  • Log Samples for Trend Micro Office Scan OSCE

© Copyright 2010, Lots of people.

Sphinx theme provided by Read the Docs
Read the Docs v: latest
Versions
latest
Downloads
PDF
HTML
Epub
On Read the Docs
Project Home
Builds

Free document hosting provided by Read the Docs.