Skip to content

dfirvault/CSV2ELK

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
CSV2ELK.py
CSV2ELK.py
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

pixlr-image-generator-6848f506e31846634ceb0225

CSV2ELK

Intended for DFIR and Incident Response, this is a simple tool that uploads CSV files to ELK

CSV2ELK v0.1

Bulk CSV-to-Elasticsearch Importer for DFIR & Threat Hunting
Author: Jacob Wilson | dfirvault@gmail.com

Elasticsearch+CSV License
"Ingest forensic logs, IOC feeds, or threat data into ELK with one click."

🔥 Features

  • Drag-and-drop CSV ingestion to Elasticsearch/OpenSearch
  • Auto-mapping for timestamps, IPs, and forensic fields
  • Configurable credentials (saved securely in config.txt)
  • DFIR-optimized: Handles malware logs, firewall data, and SIEM exports
  • Smart timestamp detection (supports Unix epoch, ISO8601, and more)

📦 Installation

# Requires Python 3.8+
pip install pandas requests tqdm

Example

image

👤 Author

Jacob Wilson
📧 dfirvault@gmail.com https://www.linkedin.com/in/jacob--wilson/

More information: https://dfirvault.com

About

Intended for DFIR and Incident Response, this is a simple tool that converts CSV files to ELK

dfirvault.com

Topics

elasticsearch kibana logstash dfir siem csv-parser data-ingestion elk-stack dfirvault

Resources

Readme

License

View license
Activity

Stars

5 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages