Parsing Sophos Web Filtering logs

By YellowOnline on Monday 25 July 2016 22:36 - Comments (0)
Category: Powershell, Views: 2.349

Yes, Sophos appliances are unix based and unix admins just love grep. At least, that seems to be Sophos' idea when looking at the logs a UTM produces.

The Powershell equivalent would be Find-String, but what if I want a readable overview instead of looking for a specific string? I need exactly that tonight, because I had to find something but didn't know what I was looking for. Hence this quick and dirty script to turn a Sophos Web Filtering Log into an object and subsequently into a CSV.

Read more »