Skip to content
A simple log analyzer which detects bruteforce attempts and prevents them by addin iptables rules.
Perl JavaScript Shell CSS
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
bin
images
patches
web-local
web
LICENSE
README
blacklist.tmpl
broots.tmpl
failed.tmpl
graphs-xml.tmpl
graphs.tmpl
hawk-blocker.sh
hawk-master.pl
hawk-updater.pl
hawk-web.pl
hawk.conf
hawk.db
hawk.init
hawk.pl
hawk.sql
hawk_db.sql
hawk_db.sql-blacklist
hawk_db.sql-broots
hawk_db.sql-failed_log
main-master.tmpl
main.tmpl
menu.tmpl
search.tmpl
stats-list.tmpl
summary.tmpl
templates.pl

README

Hawk is a lightweight log analyzer which was designed to be fast and efficient.

It scans log files on the fly and bans IP that makes too many password failures. 
It adds iptables rules to reject the IP addresses. 
You can define the logfiles.

What makes Hawk better then the other solutions out there is its unique Web Interface and its flexibility.

Hawk currently supports:
  sshd
  dovecot
  courier
  pure-ftpd
  proftpd
  cPanel
  DirectAdmin

You can’t perform that action at this time.