Converting past logs of checkpoint binary to readable

certego / fw1-loggrabber

FW1-Loggrabber is a command-line tool to grab logfiles from remote Checkpoint devices using OPSEC LEA (Log Export API)

GNU General Public License v2.0

53 stars 35 forks source link

Converting past logs of checkpoint binary to readable #27

Closed ThreatHunterDiary closed 7 years ago

ThreatHunterDiary commented 7 years ago

Hi @adepasquale,

I am having raw logs of Checkpoint of some past date. The issue here is they are in binary form.

I am aware that I can do that in Checkpoint management Server by the command fwm logexport –n –p –i filename.log –o exportfilename.csv. But I do not want to approach it since it is taking too much time and I am having large amount of logs.

Now what I want is to convert them into readable format using fw1-loggrabber.

Is it possible to do that? How?

ThreatHunterDiary commented 7 years ago

Got it.

We just need to mention the specific file name in "FW1_LOGFILE" parameter in fw1-loggrabber.conf file.

Thanxx.