Generic database support #60

glaslos · 2013-07-02T21:10:57Z

We should provide a generic (SQLAlchemy?) database interface to provide a more flexible way to store events.

johnnykv · 2013-09-24T10:06:48Z

(partly snipped from e-mail discussion)

Dumping to database with SQLAlchemy is easy. Hard part is how to format the data to make analysis easier.
To enable proper logging i am currently thinking in the lines of:

conpot.log(protocol, raw_request, interpreted_request, source_ip, source_port, session_id)

or

conpot.log_http(verb, path, agent, source_ip, source_port, raw_request, session_id)

(each protocol would have it's own method and db table).
I prefer option 2...

glaslos · 2013-09-24T11:02:29Z

I agree with you, otherwise we end up parsing raw data in the database module or storing raw and doing all the parsing in the analysis.

johnnykv · 2013-09-27T12:34:52Z

working on this issue in https://github.com/glastopf/glasdb

ghost assigned johnnykv Sep 11, 2013

glaslos added the uncomplicated label Nov 4, 2014

johnnykv removed this from the 0.4.0 milestone Dec 20, 2014

glaslos modified the milestone: 0.6.0 Nov 11, 2015

xandfury mentioned this issue Apr 2, 2018

Port to python3 #358

Closed

xandfury modified the milestones: 0.6.0, 0.6.1 Aug 2, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Generic database support #60

Generic database support #60

glaslos commented Jul 2, 2013

johnnykv commented Sep 24, 2013

glaslos commented Sep 24, 2013

johnnykv commented Sep 27, 2013

Generic database support #60

Generic database support #60

Comments

glaslos commented Jul 2, 2013

johnnykv commented Sep 24, 2013

glaslos commented Sep 24, 2013

johnnykv commented Sep 27, 2013