Log Types: Browser
- Leigh Purdie (Unlicensed)
Overview
Browser logs are generally very similar to HTTP proxy logs in format and content. They provide information on date, time, URL, referrer, browser, and related content.
The team at Snare created agents for Firefox and Chrome, at a time when the browsers supported log collection, and did not block remote event delivery.
The Firefox agent was able to connect to the Snare Central server directly on port 6161, and send snare-formatted log data.
The Chrome agent was not able to connect to arbitrary tcp ports, but could send JSON-encoded eventlog messages to a HTTP POST receiver on the Snare Central server.
At this stage, both agents have been overtaken by technology, and collection of browser log data is not available.
Fields
Field | Description |
|---|---|
DATE | Event date, in the format YYYY-MM-DD |
TIME | Event time, in the format HH:MM:SS |
SYSTEM | The source system |
TABLE | Browser |
SOURCE | URL accessed |
USERNAME | The user of the browser (if available) |
EVENT | The type of access requested |
MESSAGE | Â |
REFERRER | The page that referred the user to this URL |
LENGTH | Length of the data received |
RESPONSE | Return codes |