Poteau

Send log to Kibana.

"Poteau" /pɔ.to/ means "pole" in french.

Elastic Search is a secret weapon, and Kibana its favorite querying UI. Kibana is still rough but promising, and easy to install. Logstash is a tool for the real world, but I just want to test Kibana for forensic investigation. Poteau is a post mortem analysis tool. Something nasty happens? seek it, and if it cames back, install Logstash and watch it.

Install

Poteau is a simple and hackable Python tool.

pip install -r requirements.txt
wget https://github.com/tobie/ua-parser/raw/master/regexes.yaml
wget http://geolite.maxmind.com/download/geoip/database/GeoLiteCity.dat.gz

Test

You need an Elasticsearch and a Kibana, somewhere.

Web

zcat toto.log.gz | poteau-web http://localhost:9200/

Mail

python -m poteau.mail http://localhost:9200/ /path/to/some/mbox

Mysql slow log

cat mysql-slow.log | python -m poteau.mysql http://localhost:9200/

PhpTop

zcat error.log.1.gz | python -m poteau.phptop http://localhost:9200/

Name		Name	Last commit message	Last commit date
Latest commit History 48 Commits
poteau		poteau
scripts		scripts
.gitignore		.gitignore
README.md		README.md
requirements.txt		requirements.txt
setup.py		setup.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Poteau

Install

Test

Web

Mail

Mysql slow log

PhpTop

Licence

About

Releases

Packages

Languages

bearstech/poteau

Folders and files

Latest commit

History

Repository files navigation

Poteau

Install

Test

Web

Mail

Mysql slow log

PhpTop

Licence

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages