Giters

pouriyajamshidi / Port-Report

A Bash script to report about clients who connect to a port you specify on your server(s)

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Linux Port Monitoring

Portmonitor is a Bash script that is used to provide report on clients who connect to your server(s) on a specific port.

It takes a port number and interval (default is 443 and 60 seconds) upon running it and stores information about their IP address, country, city, ISP, AS number and the time they were connected in a text file located in /home/PortMonitor/report.txt.

This script can also be used as a canary to monitor and report suspicious activity on your network.

Usage

chmod +x portmonitor.sh

./portmonitor.sh <port> <interval>

OR

bash portmonitor.sh <port> <interval>

You can also make it a service (systemd, etc...) to have it run at your system start time.

Requirements

jq is required to run this script. However, if it is missing from your machine, the script will notify you and installs it.

Tested on

Ubuntu 16 to 20.

Anyway it should work fine on any machine that is rocking ss and bash .

Contributing

Pull requests are welcome.

License

CC0

About

A Bash script to report about clients who connect to a port you specify on your server(s)

License:Creative Commons Zero v1.0 Universal

Languages

Language:Shell 100.0%