Scalp - Apache Log Analyzer for Security

LinuxSecurity.com: Scalp! is a log analyzer for the Apache web server that aims to look for security problems. The main idea is to look through huge log files and extract the possible attacks that have been sent through HTTP/GET (By default, Apache does not log the HTTP/POST variable). Scalp is basically using the regular expression from the PHP-IDS project and matches the lines from the Apache log. These regexp has been chosen because of their quality and the top activity of the team maintaining that project. Have you ever used a log analyzer called Scalp? This project tries to look for possible security issues with your Apache web server implementation by checking the logs from your webserver. Do you use any other tools for checking your Apache logs or do you just check your only logs by eye.

Related Items