Snort Sort
Snort sort is a perl script that sorts a snort alert file by alert type.
It is fairly straight forward to use.
Current version: 0.03
Usage:
snort_sort.pl -r -w -h snort.alert
Options:
-r reverse DNS lookup
-w cgi link for IP addresses (implies -h)
-h produce html output (currently hardwired)
-p include portscan preprocessor output
Download
Contributors:
snort_stat.pl (Go
here
for more info.)
Adam Olson
History:
2000.03.17 - version 0.03
handle the new format for "-A fast" alerts
2000.03.16
process spp_portscan alerts
2000.03.07 - version 0.02
reverse DNS lookup added
cgi link option added
2000.03.06 - version 0.01
Original Script
andrewb@uab.edu