This repository contains scripts that will help you track scanning and connection attempts to your server and collect all the information in separate files convenient for further analysis.
- Python
- Asyncio
- Socket
- Logging
Для установки зависимостей, выполните команду:
$ pip install -r requirements.txt$ python3 [name_of_file.py]This script listen most popular ports (PORTS variable) on the server and log user/password in file. User have 5 attempts to try connect to server before disconnect.
This code convert .log file into xlsx table for further analisys with columns: Protocol, Source IP, Source Port, Destination IP, Destination Port, Flags.
Code in this file provide opportunity to check if you've been scaned by Nmap. You will see which protocol have been used (UDP/TCP), source IP:PORT, destination IP:PORT and flags ("FIN", "SYN", "RST", "PSH", "ACK", "URG", "CWR", "ECE").
This listener logging ssh connection information with time, source IP address, when the user cancels the connection and was disconnected.
These scripts were created to conduct research during the course of the diploma. They helped to collect personal statistics of server accesses and to identify the most popular ports to access.