Send Aanval audit data (Console events) to a Syslog destination

5 views

Skip to first unread message

alesnav

unread,

May 4, 2017, 5:36:08 AM5/4/17

to Aanval - Snort & Syslog SIEM (Correlation and Threat Management)

Hello there!

I'd want to send all events logged by Aanval to a SIEM, just for audit topics.

When I enable "Console Configuration > Preferences > Syslog Mirroring" it does send only Suricata/Snort events. Is it possible to send Audit events (known as "Console Event" in database), too?

Thanks,

Best regards

Reply all

Reply to author

Forward

0 new messages