Analyze Web-based Network Traffic: squidmagic
Analyze Web-based Network Traffic squidmagic is a tool designed to analyze a web-based network traffic to detect central command and control (C&C) servers and Malicious site, using Squid proxy server and Spamhaus. Install Ubuntu 16.04 Clone this repo & execute the script squidmagic# ./install.sh ✓ Installing system packages ✓ Cloning repositories ✓ Installing python packages ✓ Installing php packages Usage squidmagic # python squidmagic.py /var/log/squid3/access.log _ _ _ (_) | | (_) ___ __ _ _ _ _ __| |_ __ ___ __ _ __ _ _ ___ / __|/ _` | | | | |/ _` | '_ ` _ \ / _` |/ _` | |/ __| \__ \ (_| | |_| | | (_| | | | | ...