updates
Go to file
TiredFromTelehack 113b1160dd red ascii 2024-10-21 22:44:08 +02:00
images Added folder images and moved image there 2024-10-21 21:31:35 +02:00
README.md Update README.md 2024-10-21 14:33:10 -05:00
dump.txt Add files via upload 2024-10-21 14:34:15 -05:00
ipGeo.py red ascii 2024-10-21 22:44:08 +02:00
requirements.txt Add files via upload 2024-10-21 14:23:39 -05:00

README.md

IPGeo

IpGeo is a Python tool to extract IP addresses from captured network traffic files (pcap/pcapng) and generate reports in various formats (JSON, CSV, TXT, Markdown) containing details about the geolocation of each IP in the packets.

The report contains:

  1. Country
  2. Country Code
  3. Region
  4. Region Name
  5. City
  6. District
  7. Zip
  8. Latitude
  9. Longitude
  10. Timezone
  11. ISP
  12. Organization
  13. IP Address

Installation

Use the package manager pip3 to install the required modules:

pip3 install colorama requests pyshark

If you are not using Kali or ParrotOs or any other penetration distribution you need to install Tshark.

sudo apt install tshark

Usage

You can run the script either interactively or by using command-line arguments:

Interactive Mode

python3 ipGeo.py

You will be prompted to enter the captured traffic file path and the desired output format (json, csv, txt, md).

Command-Line Mode

You can also specify the pcap file and output format directly in the command line:

python3 ipGeo.py <path_to_pcap_file> --format <output_format>

Example:

python3 ipGeo.py /path/to/your/file.pcap --format json

Screenshot from the script

ipGeo