Nepenthes Parser
Gianluca Vezzoli wrote a parser to generate ad automaic report
of IP frequency, md5 ,files name, snort rules based on nepenthes log :
http://nepenthes.mwcollect.org/.
il parser must be run into nepenthes log path :
/var/log/nepenthes
Generate this files(report by mail) :
RULEZ_FILE.rules
RULEZ_IP.rules
result.frequency
result.frequency.filez
result.frequency.filezz
Download : www.snortattack.it/files/parser.tar.gz