revdns

command module
v0.0.0-...-23a4ccf Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 12, 2019 License: GPL-3.0 Imports: 10 Imported by: 0

README

revDNS

revDNS is a passive host information collector written for NSM platforms ingesting data from Bro IDS.

revDNS builds a passive database of reverse DNS information from DNS, SSL and HTTP metadata ingested from bro logs.
It currently supports ingesting data from Kafka and provides a REST interface to lookup information using IP.

Install

go get github.com/gviz/revDNS/...

Configuration

revDNS reads its configuraiton from revdns.yaml.

> api:
>>  port: 9090
>
>input: 
>>    type: "kafka"  
>>    host: "localhost:9092"  
>>    topic: "bro-raw"  
>>    stream_dns:  "dns"  
>>    stream_ssl:  "ssl"  
>>    stream_http: "http"

Usage

> go run github.com/gviz/revDNS/revDNS.go
Reverse DNS Query
> curl http://localhost:9090/revdns/api/v1/ip/<IP Address>

License

The contents of this repository are covered under the GPL V3 License.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
internal
cmd/boltreader
cmd/dnsimport
revconfig
revdb
wl

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.