mentat package
Mentat is a distributed modular SIEM (Security Information and Event Management System) designed to monitor networks of all sizes. Its architecture enables reception, storage, analysis, processing and response to a great volume of security incidents originating from various sources, such as honeypots, network probes, log analysers, third party detection services, etc. The Mentat system has been developed as an open-source project.
Subpackages
- mentat.daemon package
- mentat.datatype package
- Submodules
- mentat.datatype.internal module
- Library contents
AbuseGroup
Detector
EventStat
NetworkRecord
NetworkRecordIP4
NetworkRecordIP6
Report
ReportingFilter
User
gen_sid()
list_factory()
list_types()
t_datetime()
t_dbref()
t_detector_record()
t_filter_type()
t_ip_range()
t_net()
t_net4()
t_net6()
t_network_record()
t_network_record_old()
t_network_record_type_ip4()
t_network_record_type_ip6()
t_reporting_filter()
t_reporting_mode()
t_saved_query()
to_net4()
to_net6()
typedef_abuse_group()
typedef_detector()
typedef_event_stat()
typedef_filter()
typedef_network_record_ip4()
typedef_network_record_ip6()
typedef_report()
typedef_user()
- mentat.datatype.sqldb module
- Overview
DetectorModel
EventReportModel
EventStatisticsModel
FilterModel
GroupModel
ItemChangeLogModel
NetworkModel
ReportStatisticsJSONB
SettingsReportingModel
UserModel
detectormodel_from_typeddict()
dictdiff()
diff()
enforce_wanted_memberships_consistency()
eventstatsmodel_from_typeddict()
filtermodel_from_typeddict()
groupmodel_from_typeddict()
iprange
jsondiff()
networkmodel_from_typeddict()
setrepmodel_from_typeddict()
usermodel_from_typeddict()
- mentat.datatype.test_internal module
- mentat.datatype.test_sqldb module
- mentat.datatype.internal module
- Submodules
- mentat.emails package
- mentat.idea package
- mentat.module package
- Submodules
- mentat.module.backup module
- mentat.module.cleanup module
- mentat.module.controller module
- mentat.module.dbmngr module
- mentat.module.detmngr module
- mentat.module.enricher module
- mentat.module.ideagen module
- mentat.module.informant module
- mentat.module.inspector module
- mentat.module.netmngr module
- mentat.module.precache module
- mentat.module.reporter module
- mentat.module.sampler module
- mentat.module.statistician module
- mentat.module.storage module
- Submodules
- mentat.plugin package
- mentat.reports package
- mentat.script package
- mentat.services package
- Submodules
- mentat.services.bench_eventstorage module
- mentat.services.bench_whois module
- mentat.services.dnsr module
- mentat.services.eventstorage module
- References
DataError
EventStorageCursor
EventStorageException
EventStorageService
EventStorageServiceManager
IPBaseAdapter
IPListAdapter
QueryCanceledException
StorageConnectionException
StorageIntegrityError
build_query()
close()
incstats_decorator
init()
manager()
record_to_idea()
record_to_idea_ghost()
service()
set_manager()
- mentat.services.geoip module
- mentat.services.nerd module
- mentat.services.pdnsr module
- mentat.services.sqlstorage module
- mentat.services.test_dnsr module
- mentat.services.test_eventstorage module
- mentat.services.test_geoip module
- mentat.services.test_pdnsr module
- mentat.services.test_sqlstorage module
- mentat.services.test_whois module
- mentat.services.whois module
- Submodules
- mentat.stats package
- Submodules
- mentat.stats.bench_idea module
- mentat.stats.idea module
LIST_AGGREGATIONS
LIST_CALCSTAT_KEYS
LIST_OPTIMAL_STEPS
LIST_STAT_GROUPS
TRUNCATION_THRESHOLD
TRUNCATION_WHITELIST
TRUNCATION_WHITELIST_THRESHOLD
aggregate_stat_groups()
aggregate_stats_reports()
aggregate_stats_timeline()
aggregate_timeline_groups()
calculate_timeline_config()
calculate_timeline_config_daily()
evaluate_event_groups()
evaluate_events()
evaluate_singlehost_events()
evaluate_timeline_events()
group_events()
truncate_evaluations()
truncate_stats()
truncate_stats_with_mask()
- mentat.stats.rrd module
- mentat.stats.test_idea module
- mentat.stats.test_rrd module
- Submodules
Submodules
- mentat.const module
CKEY_CORE_DATABASE
CKEY_CORE_DATABASE_CONFIG
CKEY_CORE_DATABASE_CONNECTION
CKEY_CORE_DATABASE_EVENTSTORAGE
CKEY_CORE_DATABASE_SCHEMA
CKEY_CORE_DATABASE_SQLSTORAGE
CKEY_CORE_INFORMANT
CKEY_CORE_INFORMANT_REPORTSDIR
CKEY_CORE_REPORTER
CKEY_CORE_REPORTER_EVENTCLASSESDIR
CKEY_CORE_REPORTER_FALLBACK
CKEY_CORE_REPORTER_REPORTSDIR
CKEY_CORE_REPORTER_TEMPLATESDIR
CKEY_CORE_REPORTER_TEMPLATEVARS
CKEY_CORE_SERVICES
CKEY_CORE_SERVICES_CACHE
CKEY_CORE_SERVICES_DNS
CKEY_CORE_SERVICES_GEOIP
CKEY_CORE_SERVICES_NERD
CKEY_CORE_SERVICES_PDNS
CKEY_CORE_SERVICES_WHOIS
CKEY_CORE_STATISTICS
CKEY_CORE_STATISTICS_REPORTSDIR
CKEY_CORE_STATISTICS_RRDSDIR
DFLT_EVENT_LOG_STATISTICS
DFLT_EVENT_RELOAD
DFLT_EVENT_SAVE_RUNLOG
DFLT_EVENT_START
DFLT_INTERVAL_RELOAD
DFLT_INTERVAL_RUNLOG
DFLT_INTERVAL_STATISTICS
DFLT_QUEUE_IN_CHECK_INTERVAL
DFLT_QUEUE_IN_PERMS
DFLT_QUEUE_OUT_CHECK_INTERVAL
DFLT_QUEUE_SIZE_LIMIT
RE_REPORT_FILE_TIMESTAMP
construct_report_dirpath()
random_str()
tr_()
- mentat.dirq module
DirectoryQueue
DirectoryQueue.CONFIG_DIR_NEXT_QUEUE
DirectoryQueue.CONFIG_DIR_QUEUE
DirectoryQueue.CONFIG_GROUP
DirectoryQueue.CONFIG_QUEUE_PERMS
DirectoryQueue.CONFIG_USER
DirectoryQueue.STAT_CNT_CANCELS
DirectoryQueue.STAT_CNT_COMMITS
DirectoryQueue.STAT_CNT_DEQUEUED
DirectoryQueue.STAT_CNT_DISPATCHED
DirectoryQueue.STAT_CNT_DUPLICATED
DirectoryQueue.STAT_CNT_ERRORS
DirectoryQueue.STAT_CNT_QUEUED
DirectoryQueue.STAT_CNT_SKIPS
DirectoryQueue.STAT_CNT_UPDATES
DirectoryQueue.SUBDIR_ERRORS
DirectoryQueue.SUBDIR_INCOMING
DirectoryQueue.SUBDIR_PENDING
DirectoryQueue.SUBDIR_TMP
DirectoryQueue.banish()
DirectoryQueue.cancel()
DirectoryQueue.count_done()
DirectoryQueue.count_errors()
DirectoryQueue.count_incoming()
DirectoryQueue.count_pending()
DirectoryQueue.dispatch()
DirectoryQueue.duplicate()
DirectoryQueue.enqueue()
DirectoryQueue.enqueue_file()
DirectoryQueue.is_error()
DirectoryQueue.is_incoming()
DirectoryQueue.is_pending()
DirectoryQueue.next()
DirectoryQueue.next_file()
DirectoryQueue.reload()
DirectoryQueue.statistics()
DirectoryQueue.update()
DirectoryQueueException
- mentat.fixtures module
- mentat.system module
MentatCronjob
MentatModule
REGEXP_MENTAT_CACHEF
REGEXP_MENTAT_CRONF
REGEXP_MENTAT_LOGF
REGEXP_MENTAT_PIDF
REGEXP_MENTAT_PS
REGEXP_MENTAT_RLOGF
analyze_cache_file()
analyze_cache_files()
analyze_cron_file()
analyze_cron_files()
analyze_log_file()
analyze_log_files()
analyze_pid_file()
analyze_pid_files()
analyze_process_list_ps()
analyze_process_ps()
analyze_runlog_file()
analyze_runlog_files()
analyze_versions()
cronjob_status()
make_cronjob_list()
make_module_list()
module_status()
system_status()
- mentat.test_dirq module
- mentat.test_idea module
- mentat.test_system module
TestMentatStorage
TestMentatStorage.test_01_analyze_process_ps()
TestMentatStorage.test_02_analyze_process_list_ps()
TestMentatStorage.test_03_analyze_pid_file()
TestMentatStorage.test_04_analyze_pid_files()
TestMentatStorage.test_05_analyze_cron_file()
TestMentatStorage.test_06_analyze_cron_files()
TestMentatStorage.test_07_analyze_log_file()
TestMentatStorage.test_08_analyze_log_files()
TestMentatStorage.test_09_analyze_runlog_file()
TestMentatStorage.test_10_analyze_runlog_files()
TestMentatStorage.test_11_module_status()
TestMentatStorage.verbose