Coder Social home page Coder Social logo

aschaap / picosnitch Goto Github PK

View Code? Open in Web Editor NEW

This project forked from elesiuta/picosnitch

0.0 0.0 0.0 729 KB

A small program for notifying you whenever a program makes its first network connection

Home Page: https://pypi.org/project/picosnitch/

License: GNU General Public License v3.0

Python 100.00%

picosnitch's Introduction

picosnitch

  • An ultra lightweight program for linux that monitors your system and notifies you whenever it sees a new program that connects to the network
  • Or when the sha256 changes for one of those programs (can also check VirusTotal)
  • And features a curses based UI for browsing past connections
  • Inspired by programs such as GlassWire, Little Snitch, and OpenSnitch

getting started

installation

  • install from PyPI with
    pip3 install picosnitch[full] --upgrade --user
  • depends on the BPF Compiler Collection (e.g. for Ubuntu)
    sudo apt install python3-bpfcc

usage

  • run daemon with
    picosnitch start
  • stop daemon with
    picosnitch stop
  • view past connections with
    picosnitch view

configuration

  • config and list of seen processes are stored in ~/.config/picosnitch/snitch.json
  • stop picosnitch if it is currently running before making any edits otherwise your changes will be lost
{
  "Config": {
    "DB write min (sec)": 1, # Minimum time (seconds) between writing logs to snitch.db
    "Keep logs (days)": 365, # How many days to keep connection logs
    "Log command lines": True, # Log command line args for each executable
    "Log remote address": True, # Log remote addresses for each executable
    "Log ignore": [80, "chrome", "firefox"], # List of process names (str) or ports (int)
    # will omit connections that match any of these from the connection log (snitch.db)
    # the process and executable will still be recorded in snitch.json
    "VT API key": "", # API key for VirusTotal, leave blank to disable
    "VT file upload": False, # Only hashes are uploaded by default
    "VT limit request": 15 # Number of seconds between requests
  },
  "Latest Entries": [], # Log of entries by time
  "Names": {}, # Log of processes by name containing respective executable(s)
  "Processes": {}, # Log of processes by executable containing respective name(s)
  "SHA256": {} # Log of processes by executable containing sha256 hash(es) and VirusTotal results
}
  • the connection log is stored in ~/.config/picosnitch/snitch.db
  • the error log is stored in ~/.config/picosnitch/error.log

building from source

  • install from source using python 3 with
    python setup.py install --user
  • required dependencies (installed automatically from PyPI on setup if not already present)
    plyer psutil vt-py
  • additional dependency (requires manual installation)
    bcc

picosnitch's People

Contributors

elesiuta avatar aschaap avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.