What tools in SecurityOnion can be used for web application intrusion logfiles in csv format?

I have some web server logs from a breach. Is there a tool in SecurityOnion where I can upload the log files in csv format and have some sort of behavior-driven, static IDS/IPS identify when a breach occurred?

Continue reading What tools in SecurityOnion can be used for web application intrusion logfiles in csv format?

See If Someone Has Been In Your Drawers With This Simple Alarm

There’s a spy movie – probably from the [James Bond] franchise – in which our hero is staying in a fancy hotel. It’s crawling with enemies, naturally, and eager to see if one has been snooping in his room while he’s out for martinis, he sticks a hair across the …read more

Continue reading See If Someone Has Been In Your Drawers With This Simple Alarm