Overview

This repo contains the scripts necessary to parse Akamai property and redirect configs and ingest them into Neo4j. It is a starting point to help visualize your external attack surface within Akamai.

LinkedIn Blog post

Setup Neo4j

Download and install Neo4j: https://neo4j.com/docs/desktop-manual/current/installation/download-installation/
Create and start database (version 5.7.0: https://neo4j.com/docs/desktop-manual/current/operations/create-dbms/
Install APOC: https://neo4j.com/docs/apoc/5/installation/

Download Akamai credentials

Create and download akamai credentials: https://techdocs.akamai.com/developer/docs/set-up-authentication-credentials

NOTE: These values will be used in your .env

Install and run the app

Install python3: https://www.python.org/downloads/
Install poetry: https://python-poetry.org/docs/#installation
Install nodestream: https://nodestream-proj.github.io/nodestream/0.5/docs/tutorial/
Generate a new nodestream project
Add nodestream-akamai to your project dependencies in your nodestream projects pyproject.toml file.
Install necessary dependencies: poetry install
In nodestream.yaml add the following:

plugin_config:
  akamai:
    base_url: !env AKAMAI_BASE_URL
    client_token: !env AKAMAI_CLIENT_TOKEN
    client_secret: !env AKAMAI_CLIENT_SECRET
    access_token: !env AKAMAI_ACCESS_TOKEN
    # If you are using an akamai account key add the following line:
    account_key: !env AKAMAI_ACCOUNT_KEY
targets:
  my-db:
    database: neo4j 
    uri: bolt://localhost:7687
    username: neo4j
    password: neo4j123

Set environment variables in your terminal session for: AKAMAI_BASE_URL, AKAMAI_CLIENT_TOKEN, AKAMAI_CLIENT_SECRET, AKAMAI_ACCESS_TOKEN and if using an akamai account key AKAMAI_ACCOUNT_KEY.
Verify nodestream has loaded the pipelines: poetry run nodestream show
Use nodestream to run the pipelines: poetry run nodestream run <pipeline-name> --target my-db

Using make

Install make (ie. brew install make)
Run make run

Install Bloom visualization

For detailed instructions on how to import a perspective: https://neo4j.com/docs/bloom-user-guide/current/bloom-perspectives/perspective-creation/
Download the perspective to a file https://github.com/ccloes/neo4j-akamai/blob/main/Bloom_Perspective.json

Using the saved cypher queries

Type show endpoint <some.fqdn.com> (this will show that endpoint and the relationships to it)

Type show akamai graph (this will show the current akamai data loaded in the graph)

Type show schema (this will show the graph schema and how the nodes relate and their relationships)

Schema visualization

Arrows.app link

Authors

Zach Probst
Chad Cloes
Bryan Norman
Gabe Gallagher
Stuart Macleod
Grant Hoffman

Name		Name	Last commit message	Last commit date
Latest commit History 123 Commits
.github		.github
imgs		imgs
nodestream_akamai		nodestream_akamai
scripts		scripts
.env.example		.env.example
.gitignore		.gitignore
Bloom_Perspective.json		Bloom_Perspective.json
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
__init__.py		__init__.py
poetry.lock		poetry.lock
poetry.toml		poetry.toml
pyproject.toml		pyproject.toml

License

nodestream-proj/nodestream-plugin-akamai

Folders and files

Latest commit

History

Repository files navigation

Overview

Setup Neo4j

Download Akamai credentials

Install and run the app

Using make

Install Bloom visualization

Using the saved cypher queries

Schema visualization

Authors

About

Topics

Resources

License

Stars

Watchers

Forks

Languages