Kippo2ElasticSearch + Kibana update

The Kippo2ElasticSearch script has been updated and now creates proper entries with all attributes needed for each SSH login attempt. I have also included an exported Kibana dashboard file that you can import in your own instance and visualize the results. This is going to be very useful and it looks great.

Please get/update by cloning/pulling from GitHub: https://github.com/ikoniaris/kippo2elasticsearch

Attached are two sample screenshots of how the Kibana dashboard looks like. This doesn’t need any configuration. Just transfer your Kippo MySQL database with Kippo2ElasticSearch, open Kibana and import the JSON file from the repo and you will immediately see similar statistics for your data.

For comments, suggestions, fixes, please use the Kippo2ElasticSearch page: http://bruteforcelab.com/kippo2elasticsearch

2 pings

  1. […] The Kippo2ElasticSearch script has been updated and now creates proper entries with all attributes needed for each SSH login attempt.  […]

  2. […] The Kippo2ElasticSearch script has been updated and now creates proper entries with all attributes needed for each SSH login attempt.  […]

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Read previous post:
Kippo attack heatmap in seconds using Kibana and Kippo2ElasticSearch

Continuing from my previous post, here is how to create an attack heat map in seconds using the same ElasticSearch...

Close