cristianzsh/whois_to_elk.py

## whois_to_elk.py
import whois
import csv
import sys
from elasticsearch import Elasticsearch, helpers

es = Elasticsearch()
fp = sys.argv[1]
ip_list = open(fp, "r")

output = csv.writer(open("output.csv", "w"))
output.writerow(["IP", "Registrar", "Email", "Name", "Country", "City"])

for ip in ip_list:
    ip = ip.strip("\n")
    ip = ip.strip("\r")
    print("[*] Parseando {}".format(ip))
    w = whois.whois(ip)
    registrar = w.registrar
    name = w.name
    country = w.country
    city = w.city
    email = w.emails
    output.writerow([ip, registrar, email, name, country, city])

with open("output.csv") as f:
    reader = csv.DictReader(f)
    helpers.bulk(es, reader, index="osint", doc_type="csv")
	import whois
	import csv
	import sys
	from elasticsearch import Elasticsearch, helpers

	es = Elasticsearch()
	fp = sys.argv[1]
	ip_list = open(fp, "r")

	output = csv.writer(open("output.csv", "w"))
	output.writerow(["IP", "Registrar", "Email", "Name", "Country", "City"])

	for ip in ip_list:
	ip = ip.strip("\n")
	ip = ip.strip("\r")
	print("[*] Parseando {}".format(ip))
	w = whois.whois(ip)
	registrar = w.registrar
	name = w.name
	country = w.country
	city = w.city
	email = w.emails
	output.writerow([ip, registrar, email, name, country, city])

	with open("output.csv") as f:
	reader = csv.DictReader(f)
	helpers.bulk(es, reader, index="osint", doc_type="csv")