Giters

Cyb3r-Monk / bind9_logparse_stat

A simple frequency analysis script for bind9 DNS query logs. Is able to analyze based on client IP address, DNS domain name, and DNS query type. Uses both regular expressions, and the Counter() dictionary from the Python collections module. Is written to demonstrate how useful the combination of a Counter() dictionary and regular expressions are.

Repository from Github https://github.comCyb3r-Monk/bind9_logparse_statRepository from Github https://github.comCyb3r-Monk/bind9_logparse_stat

bind_logstat.py

A simple frequency analysis script for bind9 DNS query logs. Is able to analyze based on client IP address, DNS domain name, and DNS query type. Uses both regular expressions, and the Counter() dictionary from the Python collections module. Is written to demonstrate how useful the combination of a Counter() dictionary and regular expressions are.

usage: bind_logstat.py [-h] [--exclude [EXCLUDE [EXCLUDE ...]]]
                   [--qtype [QTYPE [QTYPE ...]]] [--client CLIENT]
                   [--domain DOMAIN] [--view VIEW] [--topn TOPN] [--debug]
                   filename

Author: Joff Thyer, May 2017

About

A simple frequency analysis script for bind9 DNS query logs. Is able to analyze based on client IP address, DNS domain name, and DNS query type. Uses both regular expressions, and the Counter() dictionary from the Python collections module. Is written to demonstrate how useful the combination of a Counter() dictionary and regular expressions are.

Languages

Language:Python 100.0%