Skip to content

tbordini/evilwatcher

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
assets
assets
 
 
cron
cron
 
 
.gitignore
.gitignore
 
 
GeoIPASNum.dat
GeoIPASNum.dat
 
 
GeoLiteCity.dat
GeoLiteCity.dat
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
about.php
about.php
 
 
check_pause.php
check_pause.php
 
 
dash.php
dash.php
 
 
dash_expired.php
dash_expired.php
 
 
db.inc.sample
db.inc.sample
 
 
evilwatcher.sql
evilwatcher.sql
 
 
geoip.inc
geoip.inc
 
 
geoipcity.inc
geoipcity.inc
 
 
geoipregionvars.php
geoipregionvars.php
 
 
global_stats.php
global_stats.php
 
 
host_pause.php
host_pause.php
 
 
hostinclude.php
hostinclude.php
 
 
hosts.php
hosts.php
 
 
hostsdelete.php
hostsdelete.php
 
 
hostsinclude.php
hostsinclude.php
 
 
hostsupdate.php
hostsupdate.php
 
 
hostsupdated.php
hostsupdated.php
 
 
index.php
index.php
 
 
ip2locationlite.class.php
ip2locationlite.class.php
 
 
monitor.php
monitor.php
 
 
monitor_all.php
monitor_all.php
 
 
portinclude.php
portinclude.php
 
 
ports.php
ports.php
 
 
portsdelete.php
portsdelete.php
 
 
portsupdate.php
portsupdate.php
 
 
portsupdated.php
portsupdated.php
 
 
same_host.php
same_host.php
 
 
stats.php
stats.php
 
 
up.php
up.php
 
 
view_pause_checks.php
view_pause_checks.php
 
 
view_paused_checks.php
view_paused_checks.php
 
 
view_paused_hosts.php
view_paused_hosts.php
 
 
view_ports_host.php
view_ports_host.php
 
 

Repository files navigation

Evilwatcher

Monitoring malicious domains on the Internet in real time for forensics purposes.

Autor: Thiago Bordini - rotiweb (at) hotmail (dot) com

Version - Stable 1.0.0

  1. Get your WOT Api key on https://www.mywot.com/wiki/API
  2. Config your variables in db.inc.sample and change it to db.inc.php
  3. Create database and tables structure from evilwatcher.sql
  4. Install nmap and php-pear(aptitude install nmap php-pear)
  5. Install Pear Nmap and Pear Whois modules (pear install Net_Nmap & pear install Net_Whois).
  6. Insert all files from the folder /cron in crontab tasks from all checks accord with example below
0,10,20,30,40,50 * * * * cd /var/www/evilwatcher/cron/ && php check.php
1,11,21,31,41,51 * * * * cd /var/www/evilwatcher/cron/ && php asn.php
2,12,22,32,42,52 * * * * cd /var/www/evilwatcher/cron/ && php nmap.php
@hourly cd /var/www/evilwatcher/cron/ && php full_nmap.php

About

Monitoring malicious domains on the Internet in real time for forensics purposes.

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

1 tags

Packages

 
 
 

Contributors

Languages