Skip to content
/ dashboard_datatable_builder Public

A Rust-based tool designed to process large volumes of CSV log data, specifically targeting structured log files with threat indicators, priorities, and other critical information.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

plasticuproject/dashboard_datatable_builder

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.github/workflows
.github/workflows
 
 
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
README.md
README.md
 
 

Repository files navigation

Rust 1.80 Lint Build Release Maintenance

Dashboard DataTable Builder

The dashboard_datatable_builder is a Rust-based tool designed to process large volumes of CSV log data, specifically targeting structured log files with threat indicators, priorities, and other critical information. It extracts, cleans, consolidates, and sorts data into a succinct CSV format, facilitating the generation of data tables for dashboard integrations or further analysis.

Features

  • Pattern-based File Selection: Chooses log files for processing based on their names and modification dates, focusing on recent data.
  • Data Cleaning and Deduplication: Utilizes regular expressions to clean 'Event Description' fields and ensures that only unique data entries are included in the output.
  • Date Filtering: Filters log entries to include only those within a specified range of recent days, allowing for targeted analysis. Entries are first filtered by user-specified days and then by a default retention period of 15 days.
  • Condition-based Filtering: Further filters entries to include only those that are flagged as 'Blocked' in the dataset.
  • Efficient Data Handling: Processes files in a memory-efficient manner, suitable for handling large datasets without overwhelming system resources.
  • Sorted CSV Output: Produces an events.csv file that combines filtered, cleaned, and sorted (by date) entries for easy use in data tables or dashboards.

Getting Started

Prerequisites

  • Rust 1.80 or later
  • Cargo for managing Rust packages

Installation

  1. Clone the repository:

    git clone https://github.com/plasticuproject/dashboard_datatable_builder.git

  2. Navigate to the project directory:

    cd dashboard_datatable_builder

  3. Build the project:

    cargo build --release

Usage

Ensure your designated directory (e.g., /var/log/fwd/db/) is populated with compatible log files. To run the aggregator, provide the path to your log files directory and the number of days back to filter the files based on their modification date as arguments:

cargo run --release <path_to_log_files> <days_back>

For example, to process logs from the last 15 days in the /var/log/fwd/db directory:

cargo run --release /var/log/fwd/db 15

You can also execute the pre-built binary in the directory where you want your output files to reside:

./dashboard_datatable_builder /var/log/fwd/db 15

The program will generate an events.csv file in the current working directory, containing the processed, aggregated, and sorted data.

Post-Execution

After running the program, check the events.csv file for your aggregated data. This file is overwritten each time the program is run to ensure it contains only the most recent and relevant entries.

Note

The default retention period for the final filtering step is set to 15 days. This means after initial processing based on the days_back parameter, entries older than 15 days from the current date are further filtered out before the final write operation.

About

A Rust-based tool designed to process large volumes of CSV log data, specifically targeting structured log files with threat indicators, priorities, and other critical information.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

v0.1.0 Latest
Sep 2, 2024

Packages

No packages published

Languages