Skip to content
/ AuthLogAttackMap Public

Tails the /var/log/auth.log, geolocates IPs found, and displays them on a web frontend.

26 stars 7 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

wagoodman/AuthLogAttackMap

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
authLogWatcher
authLogWatcher
 
 
css
css
 
 
js
js
 
 
screenshots
screenshots
 
 
svg
svg
 
 
templates
templates
 
 
README.md
README.md
 
 
rpcClient.py
rpcClient.py
 
 
sseClient.py
sseClient.py
 
 

Repository files navigation

AuthLogAttackMap

Tails the /var/log/auth.log, geolocates IPs found, and displays them on a web frontend.

Usage

You'll need two terminals: one for watching the auth.log and another for serving up events to a web frontend.

First terminal:

    python authLogTailer/

Second terminal:

    python sseClient.py

From your browser: http://localhost

Optionally you can use the CLI client:

    python  rpcClient.py [<command>] [<args>]

    Valid commands:
       summary    Show a summary of hosts in the auth log (Default)
       country    Show the breakdown of entries by country
       subscribe  Show json events as they occur in realtime

    optional arguments:
      -h, --help  show this help message and exit

Screenshot

ScreenShot

About

Tails the /var/log/auth.log, geolocates IPs found, and displays them on a web frontend.

Topics

map web-frontend geolocates-ips

Resources

Readme
Activity

Stars

26 stars

Watchers

3 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages