Giters

QXIP / stenoscope

SSTable Scanner & Parser for Stenographer Packet Indices

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

stenographerpcaphepicsstableleveldbmetricsscangooglesstables

image

Stenoscope

A golang scanner & JSON parser for PCAP SST index files generated by stenographer with NodeJS binding

Command Line

Compile the command line version using go 1.10+

make

Usage

JSON
./SSTableKeys /data/stenographer/1/thread0/index $(date -d '1 minute ago' +%s) $(date +%s)

NodeJS Module

Compile the native binding for nodejs (or download a prebuilt version)

npm install stenoscope

Usage

const stenoscope = require('stenoscope');
var args = process.argv.slice(2);

// Define Folder Path & Time Range
var datapath = args[0] || '/var/lib/stenographer/thread0/index';
var fromtime = parseInt(args[1]) || parseInt(new Date().getTime()/1000) - 60;
var totime =   parseInt(args[2]) || parseInt(new Date().getTime()/1000);

// Query SStable range to JSON (sstj)
console.log(
  sstable.sstj(datapath, fromtime, totime )
);

About

SSTable Scanner & Parser for Stenographer Packet Indices

stenographerpcaphepicsstableleveldbmetricsscangooglesstables

License:Apache License 2.0

Languages

Language:Go 66.2%Language:C 12.6%Language:C++ 12.2%Language:JavaScript 5.4%Language:Makefile 2.5%Language:Python 1.3%