#!/usr/bin/python
# -*- coding: utf-8 -*-
# Script was adapted from Violent Python by TJ O'Conner
import dpkt
import socket
import pygeoip
import optparse
# Geodatabase from Maxmind
gi = pygeoip.GeoIP('geo.dat')
def retKML(description, ip):
rec = gi.record_by_name(ip)
try:
longitude = rec['longitude']
latitude = rec['latitude']
kml = (
'<Placemark>\n'
'<name>%s</name>\n'
'<Point>\n'
'<coordinates>%6f,%6f</coordinates>\n'
'</Point>\n'
'</Placemark>\n'
) %(description, longitude, latitude)
return kml
except:
return ''
def main():
# logfile.log contains 2 columns consisting of the label and the IP Address
f = open('logfile.log', 'r')
kmlPoints = ''
count = 1
for line in f:
info = line.split()
for item in info:
if count == 1:
description = item
count = 2
else:
ip = item
count = 1
location = retKML(description, ip)
kmlPoints = kmlPoints + location
kmlheader = '<?xml version="1.0" encoding="UTF-8"?>\n<kml xmlns="http://www.opengis.net/kml/2.2">\n<Document>\n'
kmlfooter = '</Document>\n</kml>\n'
kmldoc = kmlheader + kmlPoints + kmlfooter
print kmldoc
if __name__ == '__main__':
main()
Subscribe to:
Post Comments (Atom)
-
Here is a quick walk through of GetBoo. The first item that I found was you can harvest the usernames of the existing users that are regist... -
As I was glancing through the logs of my honeypots I spent some time to look at the following logs. In the past I have just overlooked them... -
I thought I would work through a few of these web applications provided by OWASP on their broken web applications VM. The first one I th... -
Today looking at the logs of the honeypots, I became curious based on the whois of the IP Addresses attempting to login to SSH which country...
-
Recently I was doing some scanning with a tool that is available on github called masscan. The tool allows you to configure a configuration...
No comments:
Post a Comment