sagan is a Sagan uses a 'Snort like' engine and rules to analyze logs (syslog/event log/snmptrap/netflow/etc).
How to install
To use this tool, please use a method listed below
In a Linux (Debian OS), run the following command(s).
Download directly from the following link:
How to execute
This article was contributed by Gavin Dennis from Jamaica. Gavin is a member of the Caribbean CSPA.