Giter Site home page Giter Site logo

logfishh's Introduction

LOGFISHH - Logs Forensic Investigator SSH

		       |||      |||
		       | |  __  | |
	|-|_____-----/   |_|  |_|   \-----_____|-|
	|_|_________{   }|  (^) |{  }__________|_|
	 ||          |_| |   ^  | |_|          ||
	 |              \|  /\  |/              |
	 |               \ |--| /               |
	 =               \ |__| /               =
	 +               \      /               +
			  \    /
			  \    /
			   \  /
			   \  /
			   \  /
			   \  /       LOGFISHH 1.0 - Logs Forensic Investigator SSH
			   \  /                            Developer :@svelizdonoso       
			   \  /             GitHub: https://github.com/SVelizDonoso
			    \/                              Mail:[email protected]        
                                                       
                                                 
Use: python logfissh.py --file /var/log/auth.log
     python logfissh.py --file /var/log/auth.log --animation 
     python logfissh.py --file /var/log/auth.log --webm 
Options: 
     python logfissh.py -h

Descripción

Este script tiene por objetivo ayudar a realizar análisis forense de logs en servicios ssh, el fin es poder ayudar al investigador a tener un medio, por el cual pueda realizar consultas a los Logs y determinar posibles ataques. Los logs que son posibles parsear con este script son:

----  /var/log/secure
----  /var/log/auth.log

Instalación

Para hacer funcionar este script se debe instalar los siguientes paquetes:

sudo apt-get install gource
sudo apt-get install ffmpeg

Luego descargamos el script en nuestro Kali Linux 2018

git clone https://github.com/SVelizDonoso/logfishh.git
cd logfishh
python logfishh.py

Opciones

root@kali:~/Desktop/logfissh# python logfissh.py -h

   		       |||      |||
   		       | |  __  | |
   	|-|_____-----/   |_|  |_|   \-----_____|-|
   	|_|_________{   }|  (^) |{  }__________|_|
   	 ||          |_| |   ^  | |_|          ||
   	 |              \|  /\  |/              |
   	 |               \ |--| /               |
   	 =               \ |__| /               =
   	 +               \      /               +
   			  \    /
   			  \    /
   			   \  /
   			   \  /
   			   \  /
   			   \  /       LOGFISHH 1.0 - Logs Forensic Investigator SSH
   			   \  /                            Developer :@svelizdonoso       
   			   \  /             GitHub: https://github.com/SVelizDonoso
   			    \/                              Mail:[email protected]        
                                                          
                                                    
   Use: python logfissh.py --file /var/log/auth.log
    	 python logfissh.py --file /var/log/auth.log --animation 
    python logfissh.py --file /var/log/auth.log --webm 
   Options: 
    python logfissh.py -h


   
usage: logfissh.py [-h] [-f FILE] [-a] [-v] [--version]

optional arguments:
 -h, --help            show this help message and exit
 -f FILE, --file FILE  File Logs
 -a, --animation       Animation logs access
 -v, --webm            output animation to .webm
 --version             show program's version number and exit

Uso de la Herramienta

Para el uso básico de la herramienta para obtener un reporte HTML necesitamos agregar el parámetro --file

python logfissh.py --file /var/log/auth.log

Para el uso básico de la herramienta para obtener un reporte HTML y una animación de las solicitudes Accept y Fail, necesitamos agregar el parámetro --animate

python logfissh.py --file /var/log/auth.log --animation

Para el uso básico de la herramienta para obtener un reporte HTML y grabar un video de las solicitudes Accept y Fail, necesitamos agregar el parámetro --webm

python logfissh.py --file /var/log/auth.log --webm

Reporte HTML

Imagen Video Animación

Advertencia

Este software se creo SOLAMENTE para fines educativos. No soy responsable de su uso. Úselo con extrema precaución.

Autor

@svelizdonoso https://github.com/SVelizDonoso/

logfishh's People

Contributors

svelizdonoso avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.