firecat

Section: User Commands (1)
Updated: 02 December 2002
Index
 

NAME

firecat - convert a firestorm alert log to another format

 

SYNOPSIS

firecat [OPTION]... [FILE]...

 

DESCRIPTION

firecat is a tool for concatenating firestorm extended log (elog) files. firecat can also convert the files to other formats.

 

OPTIONS

-f, --format
Specify the desired conversion format. The default is elog.
-o, --options
Provide a conversion format specific options string.
-p, --plugin-dir
Load extra plugins from the specified directory.
-i, --index
For each file create an index for fast queries. The index will be stored in FILE.idx.
-i, --query
Select only certain packets
-v, --verbose
Display debugging messages to stderr.
-h, --help
Display a usage menu and list available conversion formats.

 

EXAMPLES

To concatenate all elogs in a directory in to one big elog file:

$ firecat dir/*.elog > all.elog

To convert an elog file to a tcpdump file

$ firecat -f dump foo.elog > foo.pcap

To print all priority one alerts to screen in a detailed ascii format:

$ firecat -f ascii -q prio=1" foo.elog

 

SEE ALSO

firestorm-nids(8) firestat(1)

 

AUTHOR

Original version by Gianni Tedesco.

Man page by Gianni Tedesco <gianni at scaramanga dot co dot uk>

Copyright (C) 2002 by Gianni Tedesco <gianni at scaramanga dot co dot uk>


 

Index

NAME
SYNOPSIS
DESCRIPTION
OPTIONS
EXAMPLES
SEE ALSO
AUTHOR