marco/ids.alfacom.it
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
v1.0.10
ids.alfacom.it/attached_assets
History
marco370 0d34bf7d3c Update log parsing to better identify network traffic and DDoS events 
Refactors the `SyslogParser` class in `python_ml/syslog_parser.py` to use a new, more comprehensive regex pattern (`main_pattern`) for parsing MikroTik logs. This includes improved identification of 'forward' and 'detected-ddos forward' actions, protocol details (UDP, TCP, ICMP), and associated IP addresses, ports, and lengths. The changes aim to accurately capture network traffic and potential DDoS events from MikroTik logs.

Replit-Commit-Author: Agent
Replit-Commit-Session-Id: 7a657272-55ba-4a79-9a2e-f1ed9bc7a528
Replit-Commit-Checkpoint-Type: full_checkpoint
Replit-Commit-Event-Id: b7377ada-e722-475a-86d2-07f21299ec70
Replit-Commit-Screenshot-Url: https://storage.googleapis.com/screenshot-production-us-central1/449cf7c4-c97a-45ae-8234-e5c5b8d6a84f/7a657272-55ba-4a79-9a2e-f1ed9bc7a528/MkBJZ0L
2025-11-17 17:35:37 +00:00
..
IDF_1762852265179.zip Initial commit 2025-11-11 09:12:13 +00:00
IDF_1762852276874.zip Initial commit 2025-11-11 09:12:13 +00:00
Pasted--fix-postgresql-auth-sh-PostgreSQL-Authentic-1763396674149_1763396674149.txt Fix PostgreSQL authentication issues for user access 2025-11-17 16:25:32 +00:00
Pasted--INFO-Processate-16200-righe-salvate-0-log-INFO-Processate-16300-righe-salvate-0-log-INFO-Pro-1763400819071_1763400819072.txt Update logs to show processing progress 2025-11-17 17:34:04 +00:00
Pasted--ls-la-opt-ids-env-rw-r-r-1-ids-ids-351-Nov-17-17-23-opt-ids-env-root-ids-python-ml-cat-1763397713887_1763397713887.txt Update system to correctly process log files with proper permissions 2025-11-17 16:42:42 +00:00
Pasted--sudo-u-postgres-psql-c-ALTER-SYSTEM-SET-password-encryption-scram-sha-256-ALTER-SYSTEM-ro-1763396856799_1763396856799.txt Configure database user and password for secure access 2025-11-17 16:28:10 +00:00
Pasted-head-20-var-log-mikrotik-raw-log-Nov-17-16-52-16-FIBRA-forward-in-sfp-sfpplus1-VS-FTTO-out-sfp-sf-1763400878278_1763400878278.txt Update log parsing to better identify network traffic and DDoS events 2025-11-17 17:35:37 +00:00
Pasted-sudo-cp-var-lib-pgsql-data-pg-hba-conf-var-lib-pgsql-data-pg-hba-conf-backup-manual-root-ids-pyth-1763397517711_1763397517711.txt Improve database connection security and restart log parser 2025-11-17 16:39:09 +00:00