Name		Name	Last commit message	Last commit date
Latest commit History 660 Commits
importers		importers
models		models
pages		pages
spec		spec
sql		sql
static		static
templates		templates
.gitattributes		.gitattributes
.gitignore		.gitignore
ConfigEnvy.py		ConfigEnvy.py
LICENSE		LICENSE
README.md		README.md
changelog.txt		changelog.txt
common.py		common.py
constants.py		constants.py
default.cfg		default.cfg
errors.py		errors.py
integrity.py		integrity.py
live_collector.py		live_collector.py
live_wsgiserver.py		live_wsgiserver.py
preprocess.py		preprocess.py
requirements.txt		requirements.txt
server.py		server.py
update_portLUT.py		update_portLUT.py
wsgiserver.py		wsgiserver.py

Repository files navigation

SAM - System Architecture Mapper

SAM is a tool designed to map a network based on the data log of a router. It runs as a local python-based server and displays the a map and statistics on the browser.

Check out the website for details about the project and a demo!

Prerequisites

MySQL - SAM will support other databases in the future:

apt-get install mysql-server
apt-get install libmysqlclient-dev

Python - python-dev is needed to build the MySQLdb package

apt-get install python
apt-get install python-dev

Pip - for installing python packages

apt-get install python-pip

Installation

Clone the repository
Run pip install -r requirements.txt from within the directory to install necessary packages.
Duplicate dbconfig.py as dbconfig_local.py and fill out database credentials

Usage

Edit your defaults.cfg (or export environment variables) to provide your database password to the server.
Create a data source to use in the settings page, or use the default empty data source provided.
For static analysis, import your log files into the database by running the following scripts, where log_file is the path to your log file and destination is the name of the data source you wish to fill.

python -m importers.import_* <log_file> <destination>

python preprocess.py <destination>

Log formats currently supported include:
1. Palo Alto logs: The paloalto syslog format is expected.
2. nfdumps: Binary files from nfcapd are expected. nfdump must be installed.
3. Cisco ASA logs: Partial support. Thanks to Emre Saglam for contributing.
4. AWS VPC Flow logs: Partial support. Thanks to Emre Saglam for contributing. VPC log spec
5. tcpdump: Partial support.
6. TShark: Partial support.
Import from all files before moving on.
For live analysis,
1. On the settings page, choose a data source for your live data to be funneled into then create a Access Key.
2. Edit default.cfg: Enter your access key into default.cfg in the [live] section. also in the live section, choose your format and ports to use.
3. Start the live update server
  - The command is python live_wsgiserver 8081
  - It should print "http://0.0.0.0:8081/" or similar
4. Start the collector
  - The command is python live_collector
  - You will need priviledges to bind to system port 514.
  - It should print "Testing connection... Succeeded. Live Collector listening on localhost:514." or similar
5. Tell your router to output it's log files to that freshly opened socket.
Start the server locally by running: python server.py For a more robust deployment, SAM supports the WSGI interface (wsgiserver.py) and can be run through a different web server.
Navigate your browser to localhost:8080 and explore your network!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

SAM - System Architecture Mapper

Prerequisites

Installation

Usage

About

Releases 1

Packages

Contributors 5

Languages

License

riolet/SAM

Folders and files

Latest commit

History

Repository files navigation

SAM - System Architecture Mapper

Prerequisites

Installation

Usage

About

Topics

Resources

License

Stars

Watchers

Forks

Releases 1

Packages 0

Contributors 5

Languages

Packages