Gabriele Giuseppini, Mark Burnett, Jeremy Faircloth, Dave Kleiman9781932266528, 1932266526
Log files—records of events that have occurred in a system often contain information deemed crucial to a business. However, most times log files can be so large that it becomes almost impos-sible to extract useful data or find meaningful patterns in the amount of information that they provide. The Log Parser tool allows users to treat log files and other information as SQL tables, the rows of which can be queried, processed, and formatted in different ways. The power of the SQL language, together with the variety of data that can be processed by Log Parser, make it possible to extract specific information, calculate statistics, and generate reports from large amounts of data. |
Table of contents :
Foreword
Introducing Log Parser
Monitoring IIS
Exploring the Windows Event Log
Examining Network Traffic and Performance Logs with Log Parser
Managing Snort Alerts
Managing Log Files
Investigating Intrusions
Security Auditing
Enhancing Log Parser
Formatting, Reporting and Charting
Handling Complex Data
Appendix A. SQL Grammar Reference
Appendix B. Function Reference
Appendix C Input Format Reference
Appendix D. Output Format Reference
Index |
Reviews
There are no reviews yet.