log analyzer?

**demonize** · 05-11-2009, 12:21 PM

Hello,

I am looking for log analyzer that i can use to narrow down errors, sql injection and XSS(any from of attacks).

Thx in advance

**KMDave** · 05-11-2009, 12:52 PM

Well maybe you should specify for what the program should scan the logs.

It's like hey, i need a google search result analyzer. Without proper input there won't be any proper output.

**demonize** · 05-11-2009, 01:21 PM

Well maybe you should specify for what the program should scan the logs

errors, sql injection and XSS(any from of attacks)
example:

Code:

+and+1=convert(nvarchar,CHAR(+127+))%2B(select+@@servername)
+having+1=1-- 
id0=0%20/*!39999%20and%201=2*/--%20and%201=1 HTTP/1.1" 200 12371 "-" "pangolin/0.1"
id0=0%20and%20(select%20length(database())%20%20)%3C=32%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20length(database())%20%20)%3E16%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20length(database())%20%20)%3E24%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20length(database())%20%20)%3E28%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20length(database())%20%20)%3E30%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20length(database())%20%20)%3E31%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3C=256%20and%201=1 HTTP/1.1" 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E128%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E192%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E224%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E240%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E248%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E252%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E254%20and%201=1 HTTP/1.1" 200 
id0=0%20and%20(select%20ascii(substr(database(),1,1))%20%20)%3E255%20and%201=1 HTTP/1.1" 200

an application that is for windows instead of using notepad to view apache logs. Sorry i meant logviewer

**Archangel-Amael** · 05-11-2009, 07:33 PM

Originally Posted by KMDave

Well maybe you should specify for what the program should scan the logs.

It's like hey, i need a google search result analyzer. Without proper input there won't be any proper output.

There is google analytics.

**imported_wyze** · 05-12-2009, 02:30 AM

If you're not able to use the obvious tools (sed, awk, grep, etc), try Splunk.

**thorin** · 05-12-2009, 02:43 AM

Checkout apache-scalp

BackTrack Linux - Penetration Testing Distribution

Thread: log analyzer?

Thread Tools

Search Thread

Display

log analyzer?

Apache logviewer/analyzer

Posting Permissions