Parsing and Correlating Logs with syslog-ng

Focused View

Joe Abraham

1:39:52

11 View

01.Course Overview

01.01.Course Overview.mp4

01:58

02.Learning About syslog-ng

02.01.Course Introduction.mp4

02:53

02.02.Course Overview.mp4

03:48

02.03.Whats Syslog.mp4

04:07

02.04.syslog-ng.mp4

03:00

02.05.Information and Resources.mp4

07:33

03.Configuring syslog-ng

03.01.Configuration Introduction.mp4

01:34

03.02.Getting Data In and Out.mp4

03:03

03.03.syslog-ng Configuration.mp4

09:08

03.04.Message Formatting and Syntax.mp4

03:26

03.05.Deploying syslog-ng Configurations.mp4

09:49

04.Parsing Logs with syslog-ng

04.01.Parsing with syslog-ng.mp4

03:05

04.02.Message Types in syslog-ng.mp4

02:59

04.03.syslog-ng Log Parsers.mp4

08:21

04.04.Parsing Methodology.mp4

04:07

04.05.Lets Get Parsing!.mp4

09:14

05.Correlating Logs with syslog-ng

05.01.Correlating with syslog-ng.mp4

03:48

05.02.Log Correlation Methods.mp4

05:51

05.03.Lets Get Correlating!.mp4

07:20

05.04.Course Review.mp4

03:45

05.05.Course Summary.mp4

01:03

Description

syslog-ng gives you a great open source tool for centralized log collection, parsing, and correlation. This course will teach you about this tool and how to configure and use it within your network to suit your needs.

What You'll Learn?

syslog-ng is a log collection tool that can ship, parse, correlate, and rewrite the logs it receives, enabling organizations to offload the SIEM resources that are dedicated to these activities, which can help normalize traffic. Learning how to configure, use, and customize this tool will help you manage your logging infrastructure effectively. In this course, Parsing and Correlating Logs with syslog-ng, you will learn all about this tool and how it functions, as well as how to use it. First, you will explore the tool, its purpose, and syslog as a protocol. Next, you will see how to configure it in your environment, and dive deep into parsing with syslog-ng. Finally, you will discover how to correlate with it. When you are finished with this course, you will have a full understanding of syslog-ng and be able to establish and maintain a strong logging infrastructure.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Data Science

Data Analysis

Joe Abraham

Instructor's Courses

Joe Abraham, CCIE #62417, is a Network Security Consultant working in the public sector space, assisting customers develop and implement functional and secure network architectures. He graduated from Excelsior College with an M.S. in Cybersecurity and a B.S. in Information Technology (Network Management). He currently holds many IT certifications to include CCIE, CISSP, GSEC, and CCNP Security. He is also a member of the GIAC Advisory Board. Joe is a mentor to IT professionals and a blogger who spends his time either with his wife and three children, exercising, researching and writing about technology, or learning new technologies. Spending much of his experience helping to train and educate IT professionals, he is passionate about teaching and always strives to be a positive influence in the IT field.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.