Koala

IP information for NSOC teams. Koala was written at Cemig's Network and Security Operations Center (Centro de Operações de Rede e Segurança -- CORS) to assist the team in cybersecurity investigations and network management.

Koala comes with the following modules:

subnet: performs basic IP subnet calculations.
whois: discover many information about an IP address.
proxy: sets OS proxy according to configuration file. currently works only with Windows
visio: converts MS-Visio files to PDF or HTML ones. only works with Windows
abuse: analyses an abuse box to retrieve header information of messages. under development
iron: clean up a proxy domain list. IronPort compliant
qradar: performs predefined AQL queries in IBM QRadar.
sync: syncs information between 2 systems (today: Prime to NetBox).

Usage

First, clone Koala and install its Python dependencies:

$ git clone https://github.com/forkd/koala
$ cd koala
$ python -m pip install -r requirements.txt
$ cd koala

The list of commands follows:

$ koala.py subnet 10.10.56.32/22
$ koala.py whois 888.888.888.888
$ koala.py proxy proxy_id
$ koala.py visio
$ koala.py abuse
$ koala.py iron -i domain_list.txt -o new.txt
$ koala.py qradar query1
$ koala.py sync p2n

License

Licensed under a MIT license --read LICENSE file for further information.

Name		Name	Last commit message	Last commit date
Latest commit History 18 Commits
koala		koala
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
example_koala.conf		example_koala.conf
koala.py		koala.py
requirements.txt		requirements.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Koala

Usage

License

About

Releases

Packages

Contributors 2

Languages

License

lopes/koala

Folders and files

Latest commit

History

Repository files navigation

Koala

Usage

License

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages