On Sep 7, 2016 7:33 AM, <[email protected]> wrote: > > Is it passible? how can i do it? to see infected loggs from Kaspersky on ossec's web-form > thx u >
Add a localfile for the logs. Write a decoder to parse the logs. Write rules to alert on the logs. > -- > > --- > You received this message because you are subscribed to the Google Groups "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. > For more options, visit https://groups.google.com/d/optout. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
