1. I trying to do a dump of logs for the last seven days into a CSV/Excel file; is there any way yo do this because I have not found documentation from the OSSEC site on how to?
2. I am trying to obtain a report that gives me the TOP 10 files or file types that have been changed according to the logs. Maybe if we can get the excel spreadsheet, then we can possibly set filters to obtain this information.
Can someone please confirm if this information can be gathered and how?
Thank you
/var/ossec/logs/alerts# tree
.
├── 2017
│ └── May
│ ├── ossec-alerts-11.json.gz
│ ├── ossec-alerts-11.json.sum
│ ├── ossec-alerts-11.log.gz
│ ├── ossec-alerts-11.log.sum
│ ├── ossec-alerts-12.json
│ └── ossec-alerts-12.log
├── alerts.json
└── alerts.log
--
---
You received this message because you are subscribed to the Google Groups "ossec-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.