Welcome to the Aanval Wiki. Snort, Suricata and Syslog Intrusion Detection, Situational Awareness and Risk Management.
Visit http://www.aanval.com/ for more information.
Aanval:Live Event Monitor
The Live Event Monitor allows users to view events as they generate and are imported to the console.
By default the most recent twenty-five events imported to Aanval will be displayed and all sensors will be shown, with the options of displaying more events and/or a specific risk level (from provided drop-down boxes), and individual sensors. Users may also choose to pause the display of incoming events at anytime by selecting the pause icon.
Because Aanval displays the most recent total events imported, events may not be shown when selecting a specific sensor if its most recent event(s) aren't included in the selected amount displayed. Users can check the most recent event of any sensor by navigating to Console Configuration > Snort Module > Sensor Configuration, Last Event.