Snort_AIPreproc/pymodule
2011-02-08 00:57:55 +01:00
..
snortai Fixing Makefile and pymodule 2011-02-08 00:57:55 +01:00
README Python module rewritten in pure Python 2011-02-04 00:43:59 +01:00
setup.py Python module rewritten in pure Python 2011-02-04 00:43:59 +01:00
snortai_module.c Python module rewritten in pure Python 2011-02-04 00:43:59 +01:00
test.py Python module rewritten in pure Python 2011-02-04 00:43:59 +01:00

Python module for interfacing with SnortAI. Compile it and install it through

$ python setup.py build
$ [sudo] python setup.py install

You can then access the alerts information captured by Snort simply by writing a
code like the following (also see module.py):

import snortai

alerts = snortai.alerts()

for alert in alerts:
	# Access the information
	print alert.gid, alert.sid, alert.rev

The alert class has the following members:

# id, gid, sid, rev, description, priority, classification, timestamp
# src_addr, dst_addr, src_port, dst_port, latitude, longitude