Skip to content

wagoodman/AuthLogAttackMap

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

authLogWatcher

authLogWatcher

 
 

css

css

 
 

js

js

 
 

screenshots

screenshots

 
 

svg

svg

 
 

templates

templates

 
 

README.md

README.md

 
 

rpcClient.py

rpcClient.py

 
 

sseClient.py

sseClient.py

 
 

Repository files navigation

AuthLogAttackMap

Tails the /var/log/auth.log, geolocates IPs found, and displays them on a web frontend.

Usage

You'll need two terminals: one for watching the auth.log and another for serving up events to a web frontend.

First terminal:

    python authLogTailer/

Second terminal:

    python sseClient.py

From your browser: http://localhost

Optionally you can use the CLI client:

    python  rpcClient.py [<command>] [<args>]

    Valid commands:
       summary    Show a summary of hosts in the auth log (Default)
       country    Show the breakdown of entries by country
       subscribe  Show json events as they occur in realtime

    optional arguments:
      -h, --help  show this help message and exit

Screenshot

ScreenShot

About

Tails the /var/log/auth.log, geolocates IPs found, and displays them on a web frontend.

Topics

map web-frontend geolocates-ips

Resources

Readme
Activity

Stars

24 stars

Watchers

3 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages