ModSecurity Console is a real-time monitoring and log agreggation solution for ModSecurity. It is a self-contained package (it consists of an event-collecting daemon, Web server, and database engine) written in pure Java (can be deployed on any platform that supports JRE 1.4 or better). Features include secure log centralization, alert management and notification, customizable reporting, and DNS and geographic IP resolution. It supports up to three ModSecurity sensors.


Performance was improved. Support was added for the new part K of the audit log (a list of rules processed during a transaction). The service now runs over SSL and port 8888 by default. mlogc was documented as a better choice for transporting logs to the console.

URL: ModSecurity: Open Source Web Application Firewall - ModSecurity Console