Kippo2MySQL

Kippo2MySQL is yet another simple piece of software that simply extracts some very basic stats from Kippo’s text-based log files (a mess to analyze!) and inserts them in a MySQL database. Then you can run some queries and of course visualize the data if you want to.

Many things are hardcoded or dead simple, but it does the job. The file is a modified version of “kippo-stats” perl script originally writen by Tomasz Miklas and modified by mig5. Later on I might update Kippo-Graph or write a new tool specifically for Kippo2MySQL to generate some graphs from this type of data.

DOWNLOAD Kippo2MySQL:

Important!

Download the latest version (0.2) here: kippo2mysql-0.2

MD5 Checksum: 67C9F3D06D5EA116F02400C0A2BA6977
SHA-1 Checksum: A4A1018AC206334B98FE14A5F1C5F379961F24B8

INSTALLATION:

You will have to change the script and enter the correct paths, your MySQL credentials, have a database and a db user created beforehand, etc. It’s pretty straightforward if you take a look at the script and have some basic understanding of perl and MySQL server.

Pingback: Kippo2MySQL v0.1, populate a MySQL DB with data from Kippo logs! » BruteForce Lab's Blog
DisSsha

Hi,

I just want to tell you that i had theses line in your script to avoid alert and miss duplicated entries :
$SQL = “drop table hosts;”;
$DROP = $dbh->do($SQL);
$SQL = “drop table clients;”;
$DROP = $dbh->do($SQL);
$SQL = “drop table auth;”;
$DROP = $dbh->do($SQL);

at line 30.

Regards,
- http://bruteforce.gr Ion
  
  Hello there I missed this obvious thing I guess. Thanks for contributing! I will add it to the file.
  PS. I had to rewrite your comment by myself after a wordpress hiccup.
mara

Just used it… it’s great! Thanks!
A timestamp would also be very useful…
I’ll try to import it.. and feed back…
Thank you again!
- http://bruteforce.gr/ Ion
  
  Hello mara. Thanks for your comment!
  FYI, Kippo2MySQL was written for old versions of Kippo, which didn’t have MySQL-enabled logging. If you use one of the “new” releases, it’s better to enable MySQL logging in the configuration file (see this post: http://bruteforce.gr/logging-kippo-events-using-mysql-db.html) and then use Kippo-Graph (http://bruteforce.gr/kippo-graph) to visualize the results!
  Regards, Ion.

BruteForce Lab's Blog

security, programming, administration, visualization, virtualization

Kippo2MySQL

DOWNLOAD Kippo2MySQL:

INSTALLATION:

Subscribe to BruteForce Lab

Popular Posts

Recent Posts

Archives

Categories

Latest tweets

Blogroll

Interesting Websites

Organizations

Copyright

Read previous post:

Kippo2MySQL v0.1, populate a MySQL DB with data from Kippo logs!

Kippo-Graph 0.6 released!

Kippo-Graph 0.5.1 released.

Kippo-Graph 0.5 released!

Kippo-Graph 0.4 released, introducing Kippo-Geo!

BruteForce Lab's Blog

security, programming, administration, visualization, virtualization

Kippo2MySQL

DOWNLOAD Kippo2MySQL:

INSTALLATION:

Share this:

Subscribe to BruteForce Lab

Popular Posts

Recent Posts

Archives

Categories

Latest tweets

Blogroll

Interesting Websites

Organizations

Copyright

Read previous post:

Kippo2MySQL v0.1, populate a MySQL DB with data from Kippo logs!

Kippo-Graph 0.6 released!

Kippo-Graph 0.5.1 released.

Kippo-Graph 0.5 released!

Kippo-Graph 0.4 released, introducing Kippo-Geo!