Suricata Log Parser

A simple log parser for Suricata log file (JSON)

About

This tool basically interpret Suricata IDS log files (JSON format) into more human-friendly and beautiful format.

This is just a layman's coding style. Create this just for fun and for learning purpose.

This analyzer will convert the Suricata JSON file that submitted and display the result in the next page.

The result will contains:

Example output:

Log Parser in action:

Clone this suricatalogparser to your computers/servers
Put the folder on your html root folder. E.g. /var/www/html/
Make sure all files are owned by the Apache group and user. In Ubuntu, it is the www-data group and user
Enabled all members of the www-data group to read and write files
Visit http://127.0.0.1/suricatalogparser via web browser
Upload you JSON file that you got from Suricata IDS. Mostly the filename is "eve.json".
Profit! :)

Any feedback are welcomed. You can contact me via email at m[d0t]khairulazam@gmail[d0t]com.

Credit : Suricata for the logo :)

Name		Name	Last commit message	Last commit date
Latest commit History 18 Commits
LICENSE		LICENSE
README.md		README.md
about.php		about.php
footer.php		footer.php
index.php		index.php
list.php		list.php
list.png		list.png
style.css		style.css
suricata-logo.png		suricata-logo.png
suricatalogparser_in_action.gif		suricatalogparser_in_action.gif
view.php		view.php