Finds ipv4 addresses in log files / stdout
Project description
Finds ipv4 addresses in log files / stdout
Tested against Windows 10 / Python 3.10 / Anaconda
pip install iptoolv4
The module iptoolv4 is designed for working with IPv4 addresses and IP-related data in various scenarios, such as analyzing log files or subprocess outputs to identify and manipulate IPv4 addresses. Below are some key points regarding its purpose, potential users, and advantages:
Purpose:
IP Address Handling:
The module provides methods to load, save, and search for IPv4 addresses in text data, as well as to observe log files and subprocess output for IP-related information.
Custom Formatting:
It allows users to define custom formatting for found IPv4 addresses, providing flexibility in how IP addresses are displayed or processed.
IP Address Filtering:
Users can filter out specific IP addresses.
Concurrent Processing:
The module supports concurrent searching for IP addresses, which can be advantageous for handling large volumes of data efficiently.
Advantages
Customization:
Users can define their own formatting and processing logic for found IPv4 addresses, making it adaptable to various use cases.
Concurrent Processing:
The module supports concurrent processing, enhancing efficiency when dealing with large datasets or real-time monitoring.
Hide My IP:
The option to hide specific IP addresses (e.g., localhost) can simplify analysis by filtering out irrelevant data.
DataFrame Integration:
The use of Pandas DataFrames for storing IP address ranges and search results makes it easy to work with and analyze data.
Versatility:
It can be used for a wide range of IP address-related tasks, including monitoring network activity, analyzing logs, and preprocessing data.
import subprocess
from cprinter import TC
from iptoolv4 import IpV4Tool
chunks = 10000000
concurrent = True
self = IpV4Tool(
hide_my_ip=True
) # 127.0.0.1 and this PC's IP address will not be in the results
# IMPORTANT: aa_startip == start of ip range / aa_endip == end of ip range
# using a arbitrary free database from https://lite.ip2location.com/database/ip-country-region-city
# The format of the database takes a while (when using a csv), so be patient, but it has to be done only once
self.load_wanted_ips(r"C:\citylight400mb.pkl", start="aa_startip", end="aa_endip")
# After the database is ready, you can save the pandas DataFrame to a file and load it later:
self.save_wanted_ips(r"C:\citylight400mb.pkl")
# without color formating
df = self.search_for_ip_addresses(
path_string_bytes=R"C:\newsfxaqq.txt",
chunks=1000000,
concurrent=True,
substitute=False,
)
# an example for color formating
subsfu = (
subsi
) = lambda j, i: f""" {TC('>>>').fg_green.bg_black.text} {TC(str(j['aa_city'].iloc[0])).fg_red.bg_black.text}: {i.decode('utf-8','replace')} {TC('>>>').fg_green.bg_black.text} """.encode(
"utf-8", "replace"
)
df = self.search_for_ip_addresses(
path_string_bytes=R"C:\newsfxaqq.txt",
chunks=1000000,
concurrent=True,
substitute=subsfu,
)
print(df[-1].decode("utf-8"))
# an example for observing a log file generated by another process
newfile = r"c:\newlogfile.txt"
subprocess.Popen("netstat -b 5 > " + newfile + "", shell=True)
self.observe_log_file(
newfile,
min_len=5,
columns=(
"aa_country",
"aa_city",
"aa_destrict",
"aa_lati",
"aa_longi",
),
print_df=False,
omit_columns=False,
chunks=chunks,
concurrent=concurrent,
)
# an example for observing a subprocess (stdout)
self.observe_subprocess(
cmdline="tracert -4 google.com",
min_len=5,
columns=(
"aa_country",
"aa_city",
"aa_destrict",
"aa_lati",
"aa_longi",
),
print_df=False,
shell=True,
omit_columns=False,
chunks=chunks,
concurrent=concurrent,
)
# an example for observing a subprocess (stdout)
self.observe_subprocess(
cmdline="netstat -b 6",
min_len=5,
columns=(
"aa_country",
"aa_city",
"aa_destrict",
"aa_lati",
"aa_longi",
),
print_df=False,
shell=True,
omit_columns=False,
chunks=chunks,
concurrent=concurrent,
)
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file iptoolv4-0.10.tar.gz.
File metadata
- Download URL: iptoolv4-0.10.tar.gz
- Upload date:
- Size: 31.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.10.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
4eb2854111499895e75472d590264966f21140fe0d30fb4e19666d171416a8f6
|
|
| MD5 |
ff8e2133d0bd2477e3de0f6b9237fdac
|
|
| BLAKE2b-256 |
420355d8bf59e91b514a3e0bb4ef34f5f1a09f5983a308e3c4daa37504683674
|
File details
Details for the file iptoolv4-0.10-py3-none-any.whl.
File metadata
- Download URL: iptoolv4-0.10-py3-none-any.whl
- Upload date:
- Size: 31.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.10.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9a4402decb3fb0a38b39a98cedf825d93b99e96cba347042ddd4762234c9200f
|
|
| MD5 |
a2fa9b8b33f28fc06042f7851904c753
|
|
| BLAKE2b-256 |
a55fb3555b8aaf4d516dd182790dbdcc93dd81505ec61ac0503b6b1e15883cc3
|
