 |
Microsoft Log Parser Toolkit
Customer Reviews: 3 Average Customer Rating:   Write a Review and tell the world about this title! People who purchase this book frequently purchase: - Rootkits: Subverting the Windows Kernel; Greg Hoglund, et al, $34.50, 37% Off!
- Managing Windows with VBScript and WMI; Don Jones, $37.95, 37% Off!
- Microsoft Windows Internals, 4th Edition: Microsoft Windows Server 2003, Windows XP, and Windows 2000; Mark E. Russinovich, et al, $37.50, 37% Off!
- The Zen of CSS Design: Visual Enlightenment for the Web (Voices That Matter); Dave Shea, et al, $28.50, 37% Off!
Books on similar topics, in best-seller order:Books from the same publisher, in best-seller order:
Do you want to find Brute Force Attacks against your Exchange Server? Would you
like to know who is spamming you? Do you need to monitor the performance of your
IIS Server? Are there intruders out there you would like to find? Would you like
to build user logon reports from your Windows Server? Would you like to export
your logs to XML? Would you like working scripts to automate all of these tasks
and many more for you? If so, this book is for you... "Microsoft Log Parser
Toolkit" is co-authored by Microsoft's Log Parser developer providing a complete
reference to this SQL-Query driven log analysis tool. The book and accompanying
Web site also provide dozens of customized, working scripts, queries, and templates
for Windows Server, Snort IDS, Exchange Server, IIS, ISA Server, Snort and more.
Table of Contents
1. Parsing Logfile Data 2. Assuring IIS Performance and Stability 3. Tracking
Down Intruders 4. Getting the Most from Exchange Server Logs 5. Finding Knowledge
in the Windows EventLog 6. Tracking ISA Server Logs 7. Enhancing Log Parser
with Custom Input Processors 8. Formatting, Reporting, and Charting 9. The Log
Parser Security Audit 10. Keeping an Eye on Critical Servers 11. Working with
Tricky Data 12. Converting, Rotating, and Archiving Logs 13. Log Parser: The
All-Purpose Hacker's Tool 14. Studying Firewall, IDS, and Router Logs Appendix
A: Log Parser SQL Grammar Reference Appendix B: Log Parser Function Reference
Appendix C: Log Parser Input Format Reference Appendix D: Log Parser Output
Format Reference
About the Authors
Gabriele Giuseppini is a Software Design Engineer currently
working for Microsoft Corporation in the Security Business Unit, where he developed
Microsoft Log Parser to analyze log files. Originally from Italy, after working
for years in the digital signal processing field, he moved to the United States
with his family in 1999, and joined Microsoft Corporation as a Software Design
Engineer working on Microsoft Internet Information Services. Mark Burnett
(Microsoft MVP) is an independent security consultant, freelance writer, and
a specialist in securing Windows-based IIS Web servers. Mark is the author of
"Hacking the Code: ASP.NET Web Application Security" (Syngress Publishing,
ISBN: 1932266-65-8) and co-author of Maximum Windows Security and is a contributor
to Dr. Tom Shinder's ISA Server and Beyond: Real World Security Solutions for
Microsoft Enterprise Networks (Syngress Publishing, ISBN: 1-931836-66-3). He
is a contributor and technical editor for Syngress Publishing’s Special
Ops: Host and Network Security for Microsoft, UNIX, and Oracle (ISBN: 1-931836-69-8).
Mark speaks at various security conferences and has published articles in Windows
& .NET, Information Security, Windows Web Solutions, Security Administrator,
and is a regular contributor at SecurityFocus.com. Mark also publishes articles
on his own Web site, IISSecurity.info.
Customer Reviews
Customer Reviews: 3 Average Customer Rating: Oct 12, 2007 John from Springfield, VA
Good tool. Book marred by typos
Log parser is simply put a great tool for the systems administrator. This book does an adequate job of introducing the tool. However, as is the case with all too many computer books, there is just a grotesque number of errors in this book. I've barely made it through the first few chapters so far and I've come across at least a dozen significant typos or mistatements. Use the book to learn the tool but if you run into problems getting a sample query to run, keep Google close by.
Feb 18, 2005 Rudy C from Boca Raton FLA
Certain to become an admin's Best friend
Log Parser by it self is a wonderful tool, this book lets you get up and running with it in no time. Additionally it gives a great insight on logs. This book is essential for any admin that wants to keep with the going on on his network without running agents everywhere. Log Parser toolkit lets you make logs readable (what a novel concept) without the need for heavy programming, all the scripts are included and really easy to customize. If you keep any type of log this will make your life easier and can save you major head hakes. My only recommendation is when you get one for your self, dont forget to get one for your IIS admin and your security guy, or be ready to share it. Enjoy it
Feb 18, 2005 Gabriele Giuseppini from Seattle, WA USA
Learn how to harness the power of Log Parser!
Log Parser is a Swiss-army knife tool that provides users with a powerful set of basic features that analyze, slice, and report on a large variety of information. The idea of writing this book stemmed from the realization that most of the Log Parser users find it difficult to harness the power of the tool and discover how to customize and use its basic features to complete the task at hand.
"The Microsoft Log Parser Toolkit" has been written by users that have been employing the tool for years to manage their IT systems, and shows the scripts, queries, and tricks that they use on their jobs. The first chapter gives you a thorough understanding of the Log Parser SQL-like language (how do I filter Event Log entries? How do I search for specific Web requests in time? How do I calculate statistics?), introduces you to the many input and output formats supported by version 2.2 (including the newest ADS, TSV, and NETMON input formats and the CHART and SYSLOG output formats), and delves into those little-known additional features that enhance this tool's productivity (including incremental parsing and output multiplexing). The next 10 chapters provide solutions and working examples for all the problems that can be quickly solved with Log Parser. With these chapters you will learn how to script the tool features, how to write input format plug-ins to provide your own data to Log Parser, and how to best employ its input and output formats to create charts, reports, and web applications. You will see techniques used by the authors to perform security auditing and intrusion detection, to analyze server performance, and to manage and monitor IIS servers.
Regardless of whether you are new to Log Parser, or if you are an experienced user, this book will give you new ideas and discover a few new tricks that you never thought of before!
|
|
