±Partners and Sponsors
New Today: 0
New Yesterday: 5
· Safer Internet Day
· Webmail Forensics – Digging deeper into Browsers and Mobile Applications
· Operation Endeavour: The Tip of the Iceberg?
· Forensic analysis of the ESE database in Internet Explorer 10
· WhatsApp – discovering timestamps of deleted messages
· Man In The Middle Attack: Forensics
· Extracting Evidence from Destroyed Skype Logs and Cleared SQLite Databases
· Windows 8 File History Analysis
· Understanding Rootkits: Using Memory Dump Analysis for Rootkit Detection
±Follow Forensic Focus
I'm looking for a good, freeware alternative for Splunk. I'm more than OK with an open source solution.
In my search, I stumbled upon the ManageEngine EventLog Analyzer which is quite good, but not exactly what I'm looking.
I would love to hear with what tools you are working for log analysis and aggregation.
SNMP works well for network devices, not so great in my opinion on windows machines. An agent software like Snare (free) is pretty good and combined with Kiwi Syslog offers a pretty decent syslog system in all.
In terms of log analysis, not familiar with any decent freeware tools besides splunk. You could always learn a scripting language like Perl, which isn't too hard, tons of free tutorials out there, and great for log analysis.