I understand that a routers firewall logs can be a very good source of information for detecting rootkits and other hard-to-find malware on a system. Unfortunately for me, reading and interpreting these logs is above my level of technical comprehension. Is there a program or tool that can analyze my logs for suspicious traffic? Or any other method you recommend? Potentially relevant info: My router keeps 3 categories of logs 1.System Logs 2.Event Logs 3.Firewall Logs Are all 3 logs important for this task? Thanks for assistance!
