https://github.com/evilsocket/takuan

Takuan is a system service that parses logs and detects noisy attackers in order to build a blacklist database of known cyber offenders.
https://github.com/evilsocket/takuan

Last synced: 5 months ago
JSON representation

Takuan is a system service that parses logs and detects noisy attackers in order to build a blacklist database of known cyber offenders.

• Host: GitHub
• URL: https://github.com/evilsocket/takuan
• Owner: evilsocket
• License: other
• Created: 2020-09-18T15:46:30.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2021-02-26T23:54:59.000Z (almost 5 years ago)
• Last Synced: 2024-12-30T20:51:23.275Z (about 1 year ago)
• Language: Go
• Homepage:
• Size: 5.63 MB
• Stars: 83
• Watchers: 3
• Forks: 6
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.md

Awesome Lists containing this project

• awesome-csirt - takuan

README

          
Takuan is a system service that parses logs and detects noisy attackers in order to build a blacklist database of

 known cyber offenders.

 

Periodic reports are saved to [this repository](https://github.com/evilsocket/takuan-reports) in CSV format for

 parsing. A bot is running as [@cybertakuan](https://twitter.com/cybertakuan) and tweeting about new reports.

 

## How to Use

Install the configuration:

    sudo mkdir -p /etc/takuan

    sudo cp config.example.yml /etc/takuan/config.yml

Use your favorite editor to customize it, then you can build and start all the takuan services via

 `docker-compose`:

    sudo docker-compose build

    sudo docker-compose up

   

Reports are saved on the host `/var/log/takuan/reports` and all events are available on a MySQL database running in

 one of the container and persisting its data in `/var/lib/takuan`. A `phpmyadmin` is also available on `http

 ://localhost:9090`.

    

## License

`takuan` is made with ♥  by [evilsocket](https://github.com/evilsocket) and it's released under the GPL 3

 license.