lizard啥意思
Posted
tags:
篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了lizard啥意思相关的知识,希望对你有一定的参考价值。
lizard[英]['lɪzəd][美][ˈlɪzəd]
n.蜥蜴;
复数:lizards
例句:
1.
Neither the lizard nor the glass has any secrets.
无论是蜥蜴还是玻璃,都没有任何秘密。
2.
Look at the lizard, lying on a long log.
看,有只蜥蜴躺在一个长圆木上。
3.
The national team of the united arab emirates made thelizard.
来自阿拉伯联合酋长国的队伍制作了这个蜥蜴。
4.
These female-female couples are more stable thanheterosexual couplings in related lizard species.
在相近的蜥蜴种群中,雌性同性配对比异性组合更为稳定。
5.
The tuatara looks like a lizard, but is actually a verydifferent kind of reptile.
刺背鳄蜥看起来像一只蜥蜴,但它实际上是一种非同寻常的爬行动物。 参考技术A lizard 英[ˈlɪzəd] 美[ˈlɪzərd]
n. 蜥蜴;
常用短语:
pine lizard 刺蜥
monitor lizard大蜥蜴
beaded lizard墨西哥毒蜥
a lounge lizard 赖在酒吧寻吃软饭的男人
例句:
Lizard is a kind of old reptile.
蜥蜴是一种古老的爬行动物。
I'll have your lizard head on a spike!
我定要将你这蜥蜴脑袋钉上挂起! 参考技术B 蜥蜴,蜥蜴皮,移动遮护罩
Log Parser Lizard 日志分析
1. Log Parser Lizard 介绍
Log Parser Lizard是一款强大好用的日志分析工具,使用这款软件可以方便用户对服务器日志、网站日志等进行直观用户的分析,支持基于文本的日志文件、XML 文件、CSV(逗号分隔符)文件以及注册表、文件系统等内容。
2. Windows日志分析
1.统计登陆成功的
统计登陆成功状态为(3/10)用户
SELECT EXTRACT_TOKEN(Message,13,‘ ‘) as EventType,TimeGenerated as LoginTime,EXTRACT_TOKEN(Strings,5,‘|‘) as Username,EXTRACT_TOKEN(Message,38,‘ ‘) as Loginip FROM ‘C:Program FilesLog Parser 2.2Security-01.evtx‘ where EventID=4624 and (EXTRACT_TOKEN(Message,13,‘ ‘) = ‘3‘ or EXTRACT_TOKEN(Message,13,‘ ‘) = ‘10‘)
统计时间在06-20到06-30登陆成功状态为(3/10)用户
SELECT EXTRACT_TOKEN(Message,13,‘ ‘) as EventType,TimeGenerated as LoginTime,EXTRACT_TOKEN(Strings,5,‘|‘) as Username,EXTRACT_TOKEN(Message,38,‘ ‘) as Loginip FROM ‘C:Program FilesLog Parser 2.2Security-01.evtx‘ where TimeGenerated>‘2020-06-20 23:32:11‘ and TimeGenerated<‘2020-06-30 23:34:00‘ and EventID=4624 and (EXTRACT_TOKEN(Message,13,‘ ‘) = ‘3‘ or EXTRACT_TOKEN(Message,13,‘ ‘) = ‘10‘)
- 统计登陆失败的
按用户名统计爆破次数(聚合)
select EXTRACT_TOKEN(Message,19,‘ ‘) as user,count(EXTRACT_TOKEN(Message,19,‘ ‘)) AS 总计 FROM ‘C:Program FilesLog Parser 2.2Security-01.evtx‘ where EventID=4625 GROUP by EXTRACT_TOKEN(Message,19,‘ ‘) ORDER by 总计 desc
按IP地址统计爆破次数(聚合)
select EXTRACT_TOKEN(Message,39,‘ ‘) as loginIp,count(EXTRACT_TOKEN(Message,39,‘ ‘)) AS 总计 FROM ‘C:Program FilesLog Parser 2.2Security-01.evtx‘ where EventID=4625 GROUP by EXTRACT_TOKEN(Message,39,‘ ‘) ORDER by 总计 desc
提取登录失败用户名并显示登陆失败时间
SELECT EXTRACT_TOKEN(Message,13,‘ ‘) as EventType,EXTRACT_TOKEN(Message,19,‘ ‘) as user,EXTRACT_TOKEN(Message,39,‘ ‘) as Loginip,TimeGenerated as LoginTime FROM ‘C:Program FilesLog Parser 2.2Security-01.evtx‘ where EventID=4625
- 查询 [Administrator] 创建的进程
SELECT TimeGenerated as Creationtime,EXTRACT_TOKEN(Strings,5,‘|‘) as Process FROM ‘C:Program FilesLog Parser 2.2Security-01.evtx‘ where EventID=4688 and Message LIKE ‘%Administrator%‘
- 查询创建的服务
SELECT TimeGenerated as Creationtime,Message FROM ‘C:Program FilesLog Parser 2.2Security-01.evtx‘ where EventID=7045
- 查询重置密码
SELECT TimeGenerated as Creationtime,Message FROM Security.evtx where EventID=4724
- 查询重置密码
SELECT TimeGenerated as Creationtime,Message FROM Security.evtx where EventID=4724
- 查询用户已添加到特权本地组
SELECT TimeGenerated as Creationtime,Message FROM Security.evtx where EventID=4732
- 终端会话日志
终端会话日志-RDP断开连接:
SELECT TimeGenerated as LoginTime,Strings FROM Operational.evtx where EventID=24
终端会话日志-RDP重连:
SELECT TimeGenerated as LoginTime,Strings FROM Operational.evtx where EventID=25
终端会话日志-RDP登陆:
SELECT TimeGenerated as LoginTime,Strings FROM Operational.evtx where EventID=21
以上是关于lizard啥意思的主要内容,如果未能解决你的问题,请参考以下文章