lim-cli 20.8.6

LiminalInfo command line app.

The lim app is a command line interface that provides a common means of interactively accessing multiple network security tools and data sources, or allowing you to do so from your own scripts or from existing security event processing and automation platforms.

lim uses the openstack/cliff framework to organize features into related groups, some accessing local files, or the RESTful API of a network-based service, or the web site archiving data. It produces output in clean tabular form, or in several other data formats that can feed into yet other network security tools or automation platforms.

Using lim, you can learn skills a SOC analyst needs to understand how malicious software communicates on the network, or script the post-processing of network traffic traffic captures from a honeypot or your own network.

• License: Apache 2.0 License

• Documentation: https://lim-cli.readthedocs.io/en/latest/

Features

• Uses the openstack/cliff command line framework.

• Serves as a CLI for the CTU Malware Capture Facility Datasets.

• Serves as a CLI for In-Q-Tel Labs’ Packet Café service.

• Provides basic reporting on Packet Café worker output.

• Provides basic PCAP file manipulation capabilities.

• Future features include plotting and graphing of output from PCAP processing.