|
MSALParserExplained
This document reveals a high-level representation of MSALParser
MSALParser, when configured properly, can receive ModSecurity v2 audit log entries from different sources, parses those entries and dumps the information into the mysql database.
When a source sends a ModSecurity audit log entry as a HTTP Post request, MSALParser acts like a demultiplexer and enters the related audit log into two tables, entry and alerts respectively.
|
Sign in to add a comment
