d4-project / analyzer-d4-passivedns Goto Github PK
View Code? Open in Web Editor NEWA Passive DNS backend and collector
Home Page: https://d4-project.github.io/analyzer-d4-passivedns/
License: GNU Affero General Public License v3.0
A Passive DNS backend and collector
Home Page: https://d4-project.github.io/analyzer-d4-passivedns/
License: GNU Affero General Public License v3.0
Use the defined DIR variable instead of the project fully disclosed absolute path to issue the screen commands.
From terminal:
$ dig google.com
; <<>> DiG 9.11.3-1ubuntu1.3-Ubuntu <<>> google.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 60926
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;google.com. IN A
;; ANSWER SECTION:
google.com. 23 IN A 172.217.22.78
;; Query time: 19 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Tue Feb 11 17:55:59 CET 2020
;; MSG SIZE rcvd: 55
From API:
{"time_first": 1581440159, "time_last": 1581440159, "count": 1, "rrtype": "A", "rrname": "google.com", "rdata": "172.217.22.7", "origin": "origin not configured"}
Reconnect to redis (LIST) of the D4 server if goes down
Add a notification system when a specific domain is seen or match a specific yara rule
When I run command: python3 pdns-ingestion.py
then display:
2019-06-07 07:19:18,611 - pdns ingestor - INFO - Starting and using FIFO analyzer:8:ac45ea5c-be1b-46db-a0e1-50decb7d3c09 from D4 server
Traceback (most recent call last):
File "pdns-ingestion.py", line 96, in
l = d4_record_line.decode('UTF-8')
UnicodeDecodeError: 'utf-8' codec can't decode byte 0xbf in position 2: invalid start byte
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.