Snort Viewer is a simple Node.JS based webserver to display the logs of your Snort Installation (specifically the alerts.ids file).
Start snort to output a alerts.ids file by running it with the following parameters.
snort -i 1 -c c:\Snort\etc\snort.conf -l c:\Snort\log
In this example the file will be created in C:\Snort\log\alert.ids.
To install Snort Viewer, please run
git clone https://github.com/bastisk/SnortViewer.git cd SnortViewer npm install
You can then start the server running
npm start
Before using the server, make sure to edit the Path to your Snort alert.ids log location in config.js.
You can use one of these two Routes:
/api- this route delivers the results as JSON in form of{id: Number, message: String}/- this route displays the log as HTML page