Python tool for the collection and analysis of alerts and logs generated from different ThreatWise Metallic Honeypots.
For a brief explanation of what ThreatWise gives components wise read the file explanation.md.
For a guide on the API usage and overview read the file TSOC_API.md.
For an easier cheatsheet on the API calls read the file cheatsheet_API.md
To run the script use the following command from the main directory:
python3 <PATH>/logs.py -f <filename>.ini NOTE: change <filename> with the actual name or path of your configuration file and <PATH> with the path to the script from where you are in the terminal.
- Create a script to parse the addresses
- Create a python script for the analysis of a single trap
- Create a python script for the analysis of a whole configuration of traps
See the LICENSE file for license rights and limitations (MIT).
To report bugs, request new features, or ask questions, contact the project author:
- Email: 920a9sk42f76c765@proton.me
- GitHub: @a9sk