dergeorg/NtopngGlobe
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

geoip -> fast-geopip + uid's + Local resources + data filtering v2

Browse Source
This commit is contained in:
Georg Reisinger
2022-02-01 16:34:41 +01:00
parent 3ff5f659f4
commit 3a1b0cc7df
15 changed files with 62178 additions and 579 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
routes/index.js
View File

@ -10,18 +10,19 @@ router.get('/alerts', function(req, res, next) {
res.json(globe.getData());
});
router.post('/ws', function(req, res, next) {
var data = req.body.alerts;
data.forEach(item => {
router.post('/ws', async function(req, res, next) {
for (const item of req.body.alerts) {
var log = {
src: item.srv_ip,
dest: item.cli_ip,
}
console.log(log)
alerts.addAlert(item.first_seen, item.srv_city_name, item.ip_version, item.action, item.pool_id, item.srv_continent_name, item.score, item.entity_val, item.vlan_id, item.cli2srv_bytes, item.cli_country_name, item.entity_id, item.srv_asn, item.l7_proto, item.is_cli_attacker, item.srv_name, item.srv_ip, item.proto, item.json, item.srv_country_name, item.community_id, item.alert_id, item.is_srv_attacker, item.srv_blacklisted, item.alerts_map, item.srv_os, item.cli_localhost, item.cli_asn, item.srv2cli_packets, item.cli2srv_packets, item.tstamp, item.cli_name, item.cli_continent_name, item.srv2cli_bytes, item.l7_cat, item.ifid, item.observation_point_id, item.srv_localhost, item.cli_port, item.cli_blacklisted, item.dns_last_query, item.is_flow_alert, item.srv_port, item.l7_master_proto, item.is_cli_victim, item.cli_ip, item.cli_city_name, item.cli_os, item.is_srv_victim);
globe.addArc(item.srv_ip, item.cli_ip)
})
const uid = alerts.addAlert(item.first_seen, item.srv_city_name, item.ip_version, item.action, item.pool_id, item.srv_continent_name, item.score, item.entity_val, item.vlan_id, item.cli2srv_bytes, item.cli_country_name, item.entity_id, item.srv_asn, item.l7_proto, item.is_cli_attacker, item.srv_name, item.srv_ip, item.proto, item.json, item.srv_country_name, item.community_id, item.alert_id, item.is_srv_attacker, item.srv_blacklisted, item.alerts_map, item.srv_os, item.cli_localhost, item.cli_asn, item.srv2cli_packets, item.cli2srv_packets, item.tstamp, item.cli_name, item.cli_continent_name, item.srv2cli_bytes, item.l7_cat, item.ifid, item.observation_point_id, item.srv_localhost, item.cli_port, item.cli_blacklisted, item.dns_last_query, item.is_flow_alert, item.srv_port, item.l7_master_proto, item.is_cli_victim, item.cli_ip, item.cli_city_name, item.cli_os, item.is_srv_victim);
const src = item.srv_ip;
const dest = item.cli_ip;
if (typeof src !== 'undefined' || typeof dest !== 'undefined')
await globe.addArc(src, dest, uid)
}
res.sendStatus(200);
})