Alert Message Substitution

The ability to capture content from a packet and insert it into the alert message. For example pulling a user name out of a failed login attempt and having the alert message note that.

-- MattJonkman - 14 Apr 2009

Topic revision: r1 - 2009-04-14 - MattJonkman
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats