https://github.com/gviz/revdns

bro reverse-dns threat-intelligence

Last synced: 5 months ago
JSON representation

revDNS

Host: GitHub
URL: https://github.com/gviz/revdns
Owner: gviz
License: gpl-3.0
Created: 2019-03-11T03:19:02.000Z (over 7 years ago)
Default Branch: master
Last Pushed: 2019-05-13T05:20:39.000Z (about 7 years ago)
Last Synced: 2024-06-21T11:24:17.056Z (almost 2 years ago)
Topics: bro, reverse-dns, threat-intelligence
Language: Go
Homepage:
Size: 47.9 KB
Stars: 0
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# revDNS
revDNS is a passive host information collector written for NSM platforms ingesting data from Bro IDS.

revDNS builds a passive database of reverse DNS information from DNS, SSL and HTTP metadata ingested from bro logs.
It currently supports ingesting data from Kafka and provides a REST interface to lookup information using IP.

## Install
> go get github.com/gviz/revDNS/...

## Configuration
revDNS reads its configuraiton from revdns.yaml.
```
> api:
>> port: 9090
>
>input:
>> type: "kafka"
>> host: "localhost:9092"
>> topic: "bro-raw"
>> stream_dns: "dns"
>> stream_ssl: "ssl"
>> stream_http: "http"
```

## Usage
```
> go run github.com/gviz/revDNS/revDNS.go
```
### Reverse DNS Query
```
> curl http://localhost:9090/revdns/api/v1/ip/
```

## License
The contents of this repository are covered under the GPL V3 License.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/gviz/revdns

Awesome Lists containing this project

README