https://github.com/enteee/pdml2flow-elasticsearch

Saves pdml2flow output in elasticsearch
https://github.com/enteee/pdml2flow-elasticsearch

flow json networking python

Last synced: 5 months ago
JSON representation

Saves pdml2flow output in elasticsearch

• Host: GitHub
• URL: https://github.com/enteee/pdml2flow-elasticsearch
• Owner: Enteee
• License: apache-2.0
• Created: 2017-02-03T16:39:09.000Z (over 9 years ago)
• Default Branch: master
• Last Pushed: 2019-04-16T20:35:50.000Z (about 7 years ago)
• Last Synced: 2025-12-27T21:24:48.152Z (6 months ago)
• Topics: flow, json, networking, python
• Language: Python
• Size: 24.4 KB
• Stars: 1
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# pdml2flow-elasticsearch [![PyPI version](https://badge.fury.io/py/pdml2flow-elasticsearch.svg)](https://badge.fury.io/py/pdml2flow-elasticsearch) 

_Saves [pdml2flow] output in Elasticsearch_

| Branch  | Build  | Coverage |

| ------- | ------ | -------- |

| master  | [![Build Status master]](https://travis-ci.org/Enteee/pdml2flow-elasticsearch) | [![Coverage Status master]](https://coveralls.io/github/Enteee/pdml2flow-elasticsearch?branch=master) |

| develop  | [![Build Status develop]](https://travis-ci.org/Enteee/pdml2flow-elasticsearch) | [![Coverage Status develop]](https://coveralls.io/github/Enteee/pdml2flow-elasticsearch?branch=develop) |

## Prerequisites

* [pdml2flow]

* [pip](https://pypi.python.org/pypi/pip)

## Installation

```shell

    $ sudo pip install pdml2flow-elasticsearch

```

## Usage

```shell

$ pdml2flow +elasticsearch -h

usage: Elasticsearch output [-h] [--host ES_HOST] [--port ES_PORT]

                            [--flowindex ES_FLOW_INDEX]

                            [--flowtype ES_FLOW_TYPE] [--no-frames]

                            [--frameindex ES_FRAME_INDEX]

                            [--frametype ES_FRAME_TYPE]

optional arguments:

  -h, --help            show this help message and exit

  --host ES_HOST        Elasticsearch api host [default: localhost]

  --port ES_PORT        Elasticsearch api port [default: 9200]

  --flowindex ES_FLOW_INDEX

                        Index name [default: pdml2flow]

  --flowtype ES_FLOW_TYPE

                        Type [default: flow]

  --no-frames           Do not store frames [default: False]

  --frameindex ES_FRAME_INDEX

                        Index name [default: pdml2frame]

  --frametype ES_FRAME_TYPE

                        Type [default: frame]

```

## Example

## Test environment

```shell

$ sysctl -w vm.max_map_count=262144

$ docker-compose up

```

* Elasticsearch: http://localhost:9000

* Kibana: http://localhost:5601

[pdml2flow]: https://github.com/Enteee/pdml2flow

[python]: https://www.python.org/

[wireshark]: https://www.wireshark.org/

[Build Status master]: https://travis-ci.org/Enteee/pdml2flow-elasticsearch.svg?branch=master

[Coverage Status master]: https://coveralls.io/repos/github/Enteee/pdml2flow-elasticsearch/badge.svg?branch=master

[Build Status develop]: https://travis-ci.org/Enteee/pdml2flow-elasticsearch.svg?branch=develop

[Coverage Status develop]: https://coveralls.io/repos/github/Enteee/pdml2flow-elasticsearch/badge.svg?branch=develop