This is the release of another version of Kippo-Graph, reaching 1.5. Kippo-Graph 1.5 brings a change to charts generation (now you can use a cron job instead of recreating them each time) and some updates and fixes. Thanks to zhardie for the suggestion. Download: kippo-graph-1.5 or clone/pull from GitHub: https://github.com/ikoniaris/kippo-graph MD5 Checksum: 5ae578d73c6119344b889ab76a0b0f2a SHA-1 Checksum: 40062d56a25257f49ad8dc130715efdfaf96528c CHANGES: Version 1.5: …
Category Archive: Visualization
Feb 01 2015
Kippo-Graph 1.4.2 released!
Three releases in one day? Why not! So, this is the release of another version of Kippo-Graph, reaching 1.4.2. Kippo-Graph 1.4.2 brings various fixes and improvements. Download: kippo-graph-1.4.2 or clone/pull from GitHub: https://github.com/ikoniaris/kippo-graph MD5 Checksum: 1e18f38369900b51a7f551c9820acf3d SHA-1 Checksum: 91ef88a8d38e76d819f7fbdef63ea7d561c06513 CHANGES: Version 1.4.2: + Fixed Kippo-Playlog’s results and added sorting to the table. + Added geo method selection in play.php. …
Feb 01 2015
Kippo-Graph 1.4.1 released!
This is the release of another version of Kippo-Graph, reaching 1.4.1, the 2nd for today, heh! Kippo-Graph 1.4.1 adds a check to Kippo-IP for Tor exit nodes. Download: kippo-graph-1.4.1 or clone/pull from GitHub: https://github.com/ikoniaris/kippo-graph MD5 Checksum: a34ad6c008aab1339dee47115b2f0fdc SHA-1 Checksum: 2d3023755623895c0165305eec578fe55d093918 CHANGES: Version 1.4.1: + Added check for Tor exit nodes. For comments, suggestions, fixes, please use the Kippo-Graph …
Feb 01 2015
Kippo-Graph 1.4 released!
This is the release of another version of Kippo-Graph, reaching 1.4! Kippo-Graph 1.4 brings MaxMind geolocation to Kippo-Geo. You can now select your GEO_METHOD of choice in config.php: either MaxMind which uses a local database and is very fast, or the previously used geoplugin.com web service. Download: kippo-graph-1.4 or clone/pull from GitHub: https://github.com/ikoniaris/kippo-graph MD5 Checksum: 9AEE0875F1ABBA17C54F69CC96EF457D SHA-1 Checksum: 6D639C9425389114ADB17FF1455A12E3A3C0519F …
Aug 25 2014
DionaeaFR: adding parameterized date range
UPDATE: this change has been merged into the official DionaeaFR repo. As you might know, DionaeaFR is a very good frontend for Dionaea malware honeypot. It is developed by @rubenespadas, is written in Python and uses the Django web framework. I have covered DionaeaFR in the past in my post Visualizing Dionaea’s results with DionaeaFR and of course …
Aug 24 2014
Kippo-Graph 1.3 released!
This is the release of another version of Kippo-Graph, reaching 1.3! Kippo-Graph 1.3 brings some significant changes to the codebase, the most important one being that all SQL operations now use the RedBeanPHP library. This change adds a new requirement: Kippo-Graph needs PHP version 5.3.4 or higher. Another change worth noting is the addition of VirusTotal …
Aug 09 2014
Adding ElasticSearch support to Kippo SSH honeypot
I am very fond of ElasticSearch as a storage infrastructure and I do believe it is very useful for storing attack data, especially from honeypots. If you follow my blog, you would have seen my first attempts at transferring Kippo’s data to ElasticSearch, or creating Kibana dashboards to visualize SSH attacks. These eventually led to …