Skip to content
logs-ranking is a simple Perl script to add BGP Ranking to log files to ease the discovery of suspicious activities
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.


logs-ranking is a simple Perl script to add BGP security ranking for each IP address seen. The purpose is to ease network security analysis by providing a weight to each log entry especially when you have large dataset.

logs-ranking queries two Whois interface:

  • RIPE RIS interface
  • CIRCL BGP Ranking interface.

logs-ranking is currently supporting Apache common/combined logs format.


cat ../logs/|  perl -f apache >

After gathering the BGP security ranking for your logs, it will be prepended to the log files with the following format:

ASN,BGP ranking value in float,original line

So you can use whatever tools to sort, merge, cut the ranked logs. For example, you can use sort to sort with the higher score value:

sort -r -g -t"," -k2

Software required


Copyright (C) 2011 Alexandre Dulaunoy

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see

You can’t perform that action at this time.