The lim app is a command line interface that provides a common
means of interactively accessing multiple network security tools
and data sources, or allowing you to do so from your own scripts
or from existing security event processing and automation platforms.
lim uses the openstack/cliff framework to organize features into related
groups of subcommands with lots of built-in help internally documenting their use.
It produces output in clean tabular form, or in several other data formats that
can feed into yet other network security tools or automation platforms.
Using lim, you can learn skills a SOC analyst needs to understand how
malicious software communicates on the network, or script the post-processing
of network traffic traffic captures from a honeypot or your own network.
- License: Apache 2.0 License
- Documentation: https://lim-cli.readthedocs.io/en/latest/
- Uses the openstack/cliff command line framework.
- Serves as a CLI for the CTU Malware Capture Facility Datasets.
- Serves as a CLI for In-Q-Tel Labs' Packet Café service.
- Provides basic reporting on Packet Café worker output.
- Provides basic PCAP file manipulation capabilities.
- Future features include plotting and graphing of output from PCAP processing.