-
Notifications
You must be signed in to change notification settings - Fork 10
Usage Instructions
On the remote machine (IP adddress=192.168.1.101), launch RemoteHarvester and specify the Peach log folder:
RemoteHarvester -d c:\peachlogs\
On the local machine, specify the remote machine and the aggregate log folder in which to collect log files:
PeachFarmerClient -t 192.168.1.101 -d c:\aggregatedlogs\
Run PeachFarmer RemoteHarvester on one or more AWS EC2 instances. Create an IAM role that can query for running EC2 instances and put the AWS access key, secret key, and region in the PeachFarmerClient.exe.config file. Then retrieve the data from AWS with the following command:
PeachFarmerClient --aws -d c:\logsFromAws\
To collect files from multiple Peach instances, create a text file containing hostnames or IP addresses (one per line), as below:
ec2-87-145-93-15.compute-1.amazonaws.com 192.168.1.105 fuzzinghost42.example.com
On each of these machines, launch RemoteHarvester as below:
RemoteHarvester -d c:\peachlogs\
On the local machine, specify the list of hosts and the aggregate log folder in which to collect log files:
PeachFarmerClient -i hosts.txt -d c:\aggregatedlogs\
PeachFarmer supports connections over SSL with mutual authentication (client and server authentication). To transfer files over SSL, launch the RemoteHarvester with the commands below, where server.pfx is the server's X509 certificate and client.pfx is the client's X509 certificate.
RemoteHarvester -d c:\peachlogs\ --server-cert=server.pfx --client-cert=client.pfx
On the local machine, use a command similar to the below to communicate with the server over SSL.
PeachFarmerClient -t 192.168.1.101 -d c:\aggregatedlogs\ --server-cert=server.pfx --client-cert=client.pfx