I don't know if there's a canned reporting tool but you could always try something like:
grep -B2 -A3 "level 12" /var/ossec/logs/alerts/alerts.log On Tue, May 3, 2011 at 9:41 AM, <[email protected]> wrote: > Hello, > > > > Does anyone know of a quick way to run through all the OSSEC alert log > data, and extract all alerts over level 12 severity rating, dumping them > into a file? Thanks! > > > > > > > > > > > > Tyler Ross > > >
