Hey Avi, Check out the recent blog post I made on a very similar topic ;) https://www.trustwave.com/Resources/SpiderLabs-Blog/Sending-ModSecurity-Logs-to-MySQL/?page=1&year=0&month=0
From: <owasp-modsecurity-core-rule-set-boun...@lists.owasp.org<mailto:owasp-modsecurity-core-rule-set-boun...@lists.owasp.org>> on behalf of Avi Fatal <avi.fa...@gmail.com<mailto:avi.fa...@gmail.com>> Date: Sunday, March 6, 2016 at 2:48 AM To: "owasp-modsecurity-core-rule-set@lists.owasp.org<mailto:owasp-modsecurity-core-rule-set@lists.owasp.org>" <owasp-modsecurity-core-rule-set@lists.owasp.org<mailto:owasp-modsecurity-core-rule-set@lists.owasp.org>> Subject: [Owasp-modsecurity-core-rule-set] Parsing the log error Hi, I want to trigger a daily email with aggregated data from modsecurity to sites owners. So I want to read the log, put in mysql/mongodb and trigger a job to send the report to site owners. I thought to read the apache log error because it is more structured than audit log. Do you know any good php parser that can read the log and put it in a decent array? Thanks ________________________________ This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
