|
SnortSnarf summary pageTop 0 source IPsSnortSnarf v021111.1 |
This page provides summary information about alerts acquired using input module SnortFileInput, with sources:
- /var/log/snort/alert
- /var/log/snort/portscan.log
The most active source IPs are shown. Rank is determined by the number of alerts with that IP as the source. Within a rank, IPs are sorted by # of signatures, then by IP number.
Rank | Total # Alerts | Source IP | # Signatures triggered | Destinations involved |
SnortSnarf brought to you courtesy of Silicon Defense
Authors: Jim Hoagland and Stuart Staniford
See also the Snort Page by Marty Roesch
Page generated at Sun Dec 31 15:05:01 2006