No alert while there is cross site scripting attacks on IIS logs. And also no alert related to "can not open blabla log" on ossec.log. Any idea ?
2006-10-02 11:17:51 X.X.X.234 - 195.X.X.X 80 GET /search.aspx?key=<script> 200 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.2;+SV1;+.NET+CLR+1.1.4322;+InfoPath.1;+.NET+CLR+2.0.50727)
