A command line tool for Censys Enterprise Customers that allows BQ access via the command line.
Project description
Censys BigQuery Command Line Tool
This script allows users to query the data in Censys Data BigQuery Project from the command line. The results from the query can be exported as JSON, CSV, or viewed from the terminal screen.
Note: the Censys Data BigQuery Project is available to enterprise customers and approved academic researchers. For more information on product tiers, contact sales@censys.io.
Setting Up a Service Account in BigQuery
Prior to using the BiqQuery Command Line Tool, you'll need to set up a service account that is associated with your Google Cloud Platform.
Google provides documentation on how to create a service account, either via the GCP Console or the Command Line. Visit Getting started with authentication for full documentation.
Be sure to set the GOOGLE_APPLICATION_CREDENTIALS environmental variable.
export GOOGLE_APPLICATION_CREDENTIALS="[PATH]"
Install
The library can be installed using pip.
pip install censys-bigquery-cli
OR
pip install git+https://github.com/censys/censys-bigquery
Usage
The script allows you to input SQL queries as arguments in the script, returning the results as screen output (default), JSON, or CSV.
Here are some example queries:
censys_bq 'SELECT ip, ports, protocols, tags FROM `censys-io.ipv4_public.current` WHERE location.city = "Ann Arbor" and REGEXP_CONTAINS(TO_JSON_STRING(tags), r"rsa-export") LIMIT 25'
censys_bq 'with user_ports as (
SELECT [443, 3306, 6379] as selected_ports
)
SELECT DISTINCT ip, TO_JSON_STRING(user_ports.selected_ports)
FROM `censys-io.ipv4_banners_public.current`, user_ports, UNNEST(services) as s
WHERE (SELECT LOGICAL_AND(a_i IN (SELECT port_number FROM UNNEST(services))) FROM UNNEST(user_ports.selected_ports) a_i) LIMIT 15' --format csv
censys_bq 'SELECT COUNT(ip), p80.http.get.body_sha256
FROM `censys-io.ipv4_public.current`
WHERE REGEXP_CONTAINS(p80.http.get.body, r"(?i)coinhive.min.js>")
GROUP BY p80.http.get.body_sha256
ORDER BY 1 DESC' --format json
censys_bq 'with Data as (SELECT
distinct fingerprint_sha256
FROM
`censys-io.certificates_public.certificates`, UNNEST(parsed.subject.organization) as po, UNNEST(parsed.names) as parsed_names
WHERE
REGEXP_CONTAINS(TO_JSON_STRING(parsed.names), r"[.]example[.]")
)
SELECT
distinct ip
FROM
`censys-io.ipv4_banners_public.current` as c, UNNEST(services)
JOIN Data as d on d.fingerprint_sha256 = certificate.fingerprints.sha256
LIMIT 20' --format json
Resources
Contributing
All contributions (no matter how small) are always welcome.
Development
git clone git@github.com:censys/censys-bigquery.git
cd censys-bigquery/
pip install -e ".[dev]"
License
This software is licensed under Apache License, Version 2.0
- Copyright (C) 2021 Censys, Inc.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for censys-bigquery-cli-1.1.1.tar.gz
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 5ea95af8e3ab61dae06c42fe4b90eecdcb86a0fea8a4d69dfc3e9028bb178ab6 |
|
| MD5 | 84fc48c2aebf452315e27ddb21c531d9 |
|
| BLAKE2b-256 | 9ceb01b41732be7b3adc8b1e1855d136b73dc4056c56f4e6a6dcd855bf95f565 |
Hashes for censys_bigquery_cli-1.1.1-py2.py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 0ba181d2e74392adcbdafa4b91db132a9654f80edcc885e194db4bc6dd1946ad |
|
| MD5 | a821d71720e23b7fe7f72c3466a7a84f |
|
| BLAKE2b-256 | 4f41f7a2b77331230ea2945aee5e00b35293592a5105ffd960bc268f89782ed4 |
