dutchcoders/marija

Stars
234
Rank 171,630 (Top 4 %)
Language
Go
License
GNU Affero Genera...
Created about 8 years ago
Updated over 6 years ago

dutchcoders/marija

dutchcoders

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Data exploration and visualisation for Elasticsearch and Splunk.

Marija

Marija is a data exploration and visualisation tool for (un)structured Elasticsearch data. Using Marija you'll be able to see relations between data of different datasources without any modifications to your data or index.

Screenshot

Features

work on multiple servers and indexes at the same time
different fields can be used as node identifier
identifiers can be normalized through normalization regular expressions
each field will have its own icon
query indexes natively to the datasource
histogram view to identify nodes in time
select and delete nodes
select related nodes, deselect all but selected nodes
zoom and move nodes
navigate through selected data using the tableview
multiple datasources supported like Elasticsearch, Splunk, Blockchain.info, Twitter
submit nodes in realtime

Install

Using Docker

$ docker pull marija/marija
$ vim config-docker.toml # update elasticsearch configuration
$ docker run -d -p 8080:8080 -v $(pwd)/config-docker.toml:/config/config.toml --name marija marija/marija

Installation from source

Install Golang

If you do not have a working Golang environment setup please follow Golang Installation Guide.

Install Marija

Installation of Marija is easy.

$ go get github.com/dutchcoders/marija
$ marija

Installation using Homebrew (macOS)

$ brew tap dutchcoders/homebrew-marija
$ brew install marija

Configuration

Elasticsearch

[datasource]

[datasource.elasticsearch]
type="elasticsearch"
url="http://127.0.0.1:9200/demo_index"
#username=
#password=

[[logging]]
output = "stdout"
level = "debug"

Splunk

[datasource]

[datasource.splunk]
type="splunk"
url="https://localhost:8089"
username="admin"
password="admin"

Contribute to Marija

Please follow Marija Contributor's Guide

Community

Join the marija-users mailing list to discuss all things Marija.

Copyright and license

Code and documentation copyright 2016-2018 Remco Verhoef twitter.

Code released under AGPL-3.0.

transfer.sh

Easy and fast file sharing from the command-line.

slackarchive

Archiver for Slack Teams

goftp

Golang FTP library with Walk support.

cloudman

Textual user interface to manage ec2 instances.

ares

Phishing toolkit for red teams and pentesters.

sshproxy

Golang library to proxy ssh connections

elasticsearch-api.info

go-clamd

Interface to clamd (clamav daemon). You can use go-clamd to implement virus detection capabilities to your application.

XMLGen

XMLGen is a tool for generating native Golang types from XML.

transfer.sh-web

anam

Mass scanning the internet (http and https) using a raw tcpstack.

gister

Manage your gists from the command-line.

aws-api.info

durable

Persist to disk channel for Go.

troje

Troje is a honeypot built around lxc containers. It will run each connection with the service within a seperate lxc container.

stacktray

Manage your cloud (AWS) instances from the status bar on Mac OS X. With StackTray you can connect to instances, reboot, start, stop, copy addresses to clipboard and more to come.

lootbox

Lootbox downloads open directories shared on Twitter.

trace

System tracer implementation in Rust

elastico

Commandline tool for Elasticsearch

elasticofs

Browse Elasticsearch like a filesystem.

netstack

Custom network stack in Go

ct

Index all certificates from certificate transparancy into Elasticsearch

gossdeep

homographs

Homographs: brutefind homographs within a font

identify

Identify web application versions

forensics-sqlite

Dumps frames of the -wal (write ahead log) file of sqlite databases.

go-ouitools

Golang tools to work with Mac addresses and oui. Includes oui database to resolve to vendor.

geodig

Command line tool for looking up Geolocation info for an ip address.

gonest

Golang NEST library

db2es

MySQL export to Elasticsearch

gopacket-80211

Extra gopacket layers for Radiotap and 802.11 (has been integrated in Gopacket)

usbdetective

Usb Detective for MacOS will warn if (malicious) human interface devices are inserted.

go-virustotal

VirusTotal public api interface implementation in Golang.

hodor

hodor: nginx web application firewall

smtpd

SMTPD: simple smtpd library for Go

vulndb

Vulndb is a command line tool for searching the NIST Vulnerability Database

letshttps

Automatically requests Lets Encrypt certificates and forwards to webserver. Add ssl to every website.

marija-web

tradecollector

Import all trades from Bitfinex, BTC-E, MtGox, BTC-China, OKCoin and more.

disassembler

Simple disassembler in Go using Capstone engine and DWARF support

swiss

Swiss army knife for (web) security specialists.

godex

Android DEX file analyzer library. With this go library you can extract metadata from DEX (Dalvik) java class files.

extract-riff

Extracts data for Lego RIFF files.

slackarchive-bot

Archivebot for SlackArchive

vncscan

OCR open VNC framebuffers to console

gopastebin

Pastebin Scraping API in Go

slackarchive-docker

Docker compose to run full SlackArchive stack

evtxparser

Evtxparser for Microsoft Evtx

goguard

Just a simple reload-on-change guard for processes.

releaser

Golang library to check for new releases.

nest

Command line interface to Nest

setupapi

Windows SetupAPI library for Golang

northpole

Northpole: an experimental and work in progress sync server for Santa.

cloudpings

Check the latency between regions of cloudproviders and your location.

slackbot

Slackbot implementation library for Go. Easy creation of new SlashCommands and Bots.

sslscanner

moon

Monitor different outputs from one console

slackarchive-app

The web application for SlackArchive

go-visualiser

Visualise relations within Golang applications

gogreynoise

Golang client for greynoise.io

gowebdriver

Go WebDriver library

imapclone

imapclone exports messages from imap mailboxes to elasticsearch

dbwrapper

Golang database wrapper.

slackarchive-import

Slackarchive: import archives into Slackarchive

checkmail

Check domain and email security settings.

gobus

Golang event bus

godnsbl

Interface for querying DNSBL using GO.

htmlq

HtmlQ will filter the html stdin using css queries.

candlestick

Candlestick component using HTML5 Canvas.

rotate

Rotate output of command on current screen.

esalert

Elasticsearch alerting service to Slack

gostrings

elftools-rust

Elftools for Rust

xkcdbot

XKCDbot for Slack

elasticsearch-cloudaws-plugin

minio-scripts

angular-tour

Angular tour based on Introjs

gomisp

Golang client for interfacing with MISP

merger

Golang merge objects

git-partial-hooks

Split up git hooks into multiple files.

Crop.js

Crop your images like twitter does!

ifconfig.tools

dutchcoders-web

Our website in full glory, in open source. Use however you like.

agologo

slackarchive-init

Docker initialisation for Slackarchive

gotimer

Timer library for go. Will call function after timeout.

gopulsaradmin

metadata

github-webhook-test

github-webhook-test

slackbot-pick

The /pick slackbot helps you with all difficult choices you have to make.

eight-spice-chrome

Chrome extension to extend each website the way you want.

essw

ESSW stands for extreme-simple-static-webserver. A simple multiplatform static webserver to be used for testing static sites.

mockingbird

Go framework for testing services.

gotransmission

Transmission RPC Library for Go

homebrew-marija

Homebrew formula for Marija

nginx-lua-modules

Collection of lua modules for use with Nginx or OpenResty

minio-docker

ares-web

homebrew-minio-server

goclef

Go implementation for Clef API