Web service for analysing pcap files with snort
Web service for analysing pcap files with snort.
websnort provides a web interface for user and system submission of packet capture files to run against a snort IDS instance. Alerts and logs are returned as results.
If you are after a web interface for monitoring a running snort instance, see https://www.snort.org/downloads#additional-downloads instead.
Install snort if needed:
sudo apt-get install snort
Optional Disable running snort service if only required for this web api:
sudo service snort stop sudo update-rc.d snort disable
On recent ubuntu/debian releases the default snort.conf is not world readable. Unless planning to run the web service as root (not recommended) you will need to modify the permissions, for example:
sudo chmod a+r /etc/snort/snort.conf
Install web service using pip:
sudo pip install websnort
Start the websnort web server on the default port:
Browse to server:8080 and submit a pcap file for analysis.
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
|Filename, size & hash SHA256 hash help||File type||Python version||Upload date|
|websnort-0.3-py2-none-any.whl (100.3 kB) Copy SHA256 hash SHA256||Wheel||2.7||Aug 10, 2014|
|websnort-0.3.tar.gz (105.9 kB) Copy SHA256 hash SHA256||Source||None||Aug 10, 2014|