Skip to content disloops

PSADify – Custom PSAD Output Tool

In a previous article I described how to install and run the Port Scan Attack Detector (PSAD) on a Raspberry Pi. It is the closest thing to a full IDS that works on the Raspberry Pi and it's extremely easy to set up.

None of the existing visualization tools for PSAD data really met my needs, so I created a custom Python script that generates an HTML page from the live PSAD data.

The PSADify script is available here: PSADify on Github
You can see the actual data here: Live PSAD Attack Data

On my own host running PSAD, there is a cronjob that runs this script every five minutes and uploads the output to an AWS S3 bucket. If the local configuration or the settings on the AWS side would be useful to anyone, let me know!

3 thoughts on “PSADify – Custom PSAD Output Tool

  1. Mike

    Hello,

    "If the local configuration or the settings on the AWS side would be useful to anyone, let me know!"

    Yes, please, that would be very interesting to learn. Or also a very simple php code that runs when a webpage in the server is accessed so that psadify results are displayed.

    Thank you in advance!

    Reply
    1. matt

      Hi Mike! It will take me a little bit to write up, I will post it here once complete. Thanks for your interest.

      Reply

Leave a Reply to Mike Cancel reply

Your email address will not be published. Required fields are marked *