Thursday, January 13, 2011

ThePigDoktah needs some feedback

One of the many OpenSource projects that surround Snort is a new one by JJ Cummings of Sourcefire, named "thepigdoktah".

This is a tool basically for parsing and generating some useful statistics out of the performance logs that Snort generates.

Analyzing for you, Mb/s successfully analyzed, dropped packets, packets per second, size of packets.  There are a lot of metics and statistics in the perfmon preprocessor files that Snort generates, and thepigdoktah aims to expose those to the user.

Take a look at the project here.

3 comments:

  1. code.google is dead... where's the new home of thepigdoktah?

    ReplyDelete
    Replies
    1. Waldo, not sure if the project was ever moved. I'll get with JJ.

      Delete
    2. https://github.com/enhanced/thepigdoktah JJ moved it.

      Delete