ACID-XML : Snort XML Logs GUI viewer and parser class.


ACID-XML is a GUI viewer for xml logs produced by snort. The main objective is to end up with a shared library and view applications that can read and parse and correlate logs from differrent security devices, i.e Firewalls, VPN, IDS. There have been several commercial attempts on producing such engine.this is a humble attempt to start something that is open source, and usable :) there are other GUI's to view alerts and events from different sources like MySQL, the most notable is ACID, which inspired this project. You should also take a look at snortcenter, I havent had much luck with it, and I thought the GUI was a bit too crowded and ugly, but many folks have been usingit. Our approach is a little different than ACID: we feel that a standalone application that doesn't require many components like MySQL+apache+php can prove useful.we also decided to start with xml format because we are planning to make a library that can parse xml files produced by different security oriented applications/appliances. you can see a screen shot Here

Requirments :

if you are planning to compile from source, you will need development versions of the below requirments.On OpenBSD this will be there if you have the runtime libraries, on linux however you need to make sure you have all the required headers.
  • Qt Toolkit
  • Expat from the apache folks

    Downloads :

  • Linux RPM
  • Linux Source
  • *BSD Source:Compiled on OpenBSD will probably work on other BSD's
    ChangeLog

    I am making the windows code available again, I have received various requests for the win32 version. Here is the binary. Source code can be downloaded by clicking on ThisLink.



    MaximumUnix: A Platform you trust your security with