Posts categorized as 'logging'



Web Interface for OSSEC

The OSSEC HIDS platform is a popular log collection and analysis platform, this article shows how you can implement a web interface for the OSSEC platform.



Posted in logging   ossec   ossec-wui     /   2022-10-03

A Guide to NGINX Logs

NGINX is a powerful web server and logging is a critical piece to managing a web server. In this article we explain the two log types: access and error, and how to work with them.



Posted in logging   nginx   weblogs     /   2022-09-30

A Guide to Office 365 Microsoft Exchange Logs

Microsoft Office365 offers a very powerful audit trail of Exchange email logs. In this guide, we will explain how they look like and what to take from them.



Posted in logging   log_management     /   2022-09-16

The Cisco Hack - Tracking the Attack Through your Logs

Cisco Compromise - Insights from Cisco and the trails the attackers can leave in your logs.



Posted in logging   security   siem     /   2022-09-16

OSSEC for Website Security - Logs and Integrity Checks

How to monitor website logs with OSSEC HIDS.



Posted in logging   ossec     /   2022-08-12

Log Management Challenges

Log management is difficult because of the shear scope of devices that need to be monitored.



Posted in logging   log-management     /   2022-07-21

A Guide to Dropbear Logs

Understanding the logs from Dropbear, a SSH server meant for low memory systems. Useful to understand the logs from your routers, including OpenWrt, Ubiquiti, Unifi, etc.



Posted in logging   sshd   dropbear     /   2022-06-02

Learn How to Test System Logging with Logger

Logger is a command-line tool for Linux and BSD systems that allow you to easily test and send logs to syslog.



Posted in logging   logger     /   2022-06-02

A Guide to Ubuntu Linux Logging

Ubuntu is a popular linux distribution and this article explains how logs are generated, where they are stored, and what they capture.



Posted in logging   ubuntu     /   2022-06-02

Trunc - What Events to Log to your central logging server

In this article we explore the best practices and the type of events that you should always store in your central logging server.



Posted in logging   log-management     /   2022-06-02

OSSEC - Detecting New Files with syscheckd

How to detect new files using OSSEC HIDS and the syscheck module (both in batch and in real time).



Posted in logging   ossec     /   2022-06-02

Configure OSSEC on Linux Distributions

We are big fans of OSSEC and on this guide, we will show you how to configure OSSEC on Linux Distributions with some automation scripts.



Posted in logging   ossec     /   2022-06-02

OSSEC - Troubleshooting Agent to Server Connection Issues

How to troubleshoot connectivity issues between the OSSEC Agent and Server.



Posted in logging   ossec     /   2022-06-02

A Guide to Apache Logs

Apache is a powerful web server and logging is a critical piece to managing a web server. In this article we explain the two log types: access and error, and how to work with them.



Posted in logging   weblogs   apache     /   2022-06-02

Troubleshooting Remote Syslog with TCPDUMP

How to troubleshoot remote syslog with tcpdump. rsyslog, syslog-ng, linux, ubuntu, red hat, centos



Posted in logging   tcpdump   syslog     /   2022-06-02

Simple, affordable, log management and analysis.