Book description
Written by Microsoft's Log Parser developer, this is the first book available on Microsoft's popular yet undocumented log parser tool. The book and accompanying Web site contain hundreds of customized, working scripts and templates that system administrators will find invaluable for analyzing the log files from Windows Server, Snort IDS, ISA Server, IIS Server, Exchange Server, and other products.
System administrators running Windows, Unix, and Linux networks manage anywhere from 1 to thousands of operating systems (Windows, Unix, etc.), Applications (Exchange, Snort, IIS, etc.), and hardware devices (firewalls, routers, etc.) that generate incredibly long and detailed log files of all activity on the particular application or device. This book will teach administrators how to use Microsoft's Log Parser to data mine all of the information available within these countless logs. The book teaches readers how all queries within Log Parser work (for example: a Log Parser query to an Exchange log may provide information on the origin of spam, viruses, etc.). Also, Log Parser is completely scriptable and customizable so the book will provide the reader with hundreds of original, working scripts that will automate these tasks and provide formatted charts and reports detailing the results of the queries.
- Written by Microsoft's sole developer of Log Parser, this is the first book available on the powerful yet completely undocumented product that ships with Microsoft's IIS, Windows Advanced Server 2003, and is available as a free download from the Microsoft Web site
- This book and accompanying scripts will save system administrators countless hours by scripting and automating the most common to the most complex log analysis tasks
Table of contents
- Cover
- Title Page
- Acknowledgments
- Technical Editor
- Lead Author
- Contributing authors
- Foreword
- Table of Contents
- Chapter 1: Introducing Log Parser
- Chapter 2: Monitoring IIS
- Chapter 3: Exploring the Windows Event Log
- Chapter 4: Examining Network Traffic and Performance Logs with Log Parser
- Chapter 5: Managing Snort Alerts
- Chapter 6: Managing Log Files
- Chapter 7: Investigating Intrusions
- Chapter 8: Security Auditing
- Chapter 9: Enhancing Log Parser
- Chapter 10: Formatting, Reporting, and Charting
- Chapter 11: Handling Complex Data
- Appendix A: SQL Grammar Reference
- Appendix B: Function Reference
-
Appendix C: Input Format Reference
- In This Toolbox
- ADS Input Format
- BIN Input Format
- COM Input Format
- CSV Input Format
- ETW Input Format
- EVT Input Format
- FS Input Format
- HTTPERR Input Format
- IIS Input Format
- IISODBC Input Format
- IISW3C Input Format
- NCSA Input Format
- NETMON Input Format
- REG Input Format
- TEXTLINE Input Format
- TEXTWORD Input Format
- TSV Input Format
- URLSCAN Input Format
- W3C Input Format
- XML Input Format
- Appendix D: Output Format Reference
- Index
Product information
- Title: Microsoft Log Parser Toolkit
- Author(s):
- Release date: February 2005
- Publisher(s): Syngress
- ISBN: 9780080489391
You might also like
book
Microsoft® Windows® Scripting with WMI: Self-Paced Learning Guide
Visit the catalog page for Microsoft® Windows® Scripting with WMI: Self-Paced Learning GuideVisit the errata page …
book
The .NET Developer’s Guide to Directory Services Programming
“If you have any interest in writing .NET programs using Active Directory or ADAM, this is …
book
Windows Server 2008 Active Directory Domain Services
This guide is intended to assist designers in the decision-making process by providing a clear and …
book
Exam Ref MCSA 70-411: Administering Windows Server 2012 R2
Prepare for Microsoft Exam 70-411 - and help demonstrate your real-world mastery of administering Windows Server …