firecat
Section: User Commands (1)
Updated: 02 December 2002
Index
NAME
firecat - convert a firestorm alert log to another format
SYNOPSIS
firecat [OPTION]... [FILE]...
DESCRIPTION
firecat is a tool for concatenating firestorm extended log (elog)
files. firecat can also convert the files to other formats.
OPTIONS
- -f, --format
-
Specify the desired conversion format. The default is elog.
- -o, --options
-
Provide a conversion format specific options string.
- -p, --plugin-dir
-
Load extra plugins from the specified directory.
- -i, --index
-
For each file create an index for fast queries. The index will be stored in FILE.idx.
- -i, --query
-
Select only certain packets
- -v, --verbose
-
Display debugging messages to stderr.
- -h, --help
-
Display a usage menu and list available conversion formats.
EXAMPLES
- To concatenate all elogs in a directory in to one big elog file:
-
$ firecat dir/*.elog > all.elog
- To convert an elog file to a tcpdump file
-
$ firecat -f dump foo.elog > foo.pcap
- To print all priority one alerts to screen in a detailed ascii format:
-
$ firecat -f ascii -q prio=1" foo.elog
SEE ALSO
firestorm-nids(8)
firestat(1)
AUTHOR
Original version by Gianni Tedesco.
Man page by Gianni Tedesco <gianni at scaramanga dot co dot uk>
Copyright (C) 2002 by Gianni Tedesco <gianni at scaramanga dot co dot uk>
Index
- NAME
-
- SYNOPSIS
-
- DESCRIPTION
-
- OPTIONS
-
- EXAMPLES
-
- SEE ALSO
-
- AUTHOR
-