Hi, I've checked ossec.net but the documentation for ossec-reportd is fairly old and non-exhaustive.
While I can perform most of the reports and I've obtained a list of existing groups by grepping the xml files in the rules directory, I would need an overview of all possible -f and -r arguments. Does such a list exist ? Examples : how to create a report on one specific user cat logfile | ossec-reportd -n "User" -f ??? -r ??? how to create a report on one specific host cat logfile | ossec-reportd -n "Host" -f ?? -r ??? Thanks in advance, Wim
