LUFT partial fork of usbrip rewrite on go lang for Linux, you also can cross compile for using in various OS such as macOS, Windows with reduced functionality (custom log directory)
GOOS=linux GOARCH=amd64 go build -ldflags="-s -w"for LinuxGOOS=windows GOARCH=amd64 go build -ldflags="-s -w"for WindowsGOOS=darwin GOARCH=amd64 go build -ldflags="-s -w"for macOS
$ ./luft -h
Usage:
luft [OPTIONS]
Application Options:
-m, --masstorage show only mass storage devices [$MASSTORAGE]
-u, --untrusted show only untrusted devices [$UNTRUSTED]
-n, --number= number of events to show [$NUMBER]
-s, --sort=[asc|desc] sort events (default: asc) [$SORT]
-e, --export export events [$EXPORT]
-c, --check check devices for whitelist [$CHECK]
-E, --extusbids external usbids data base [$EXTUSBIDS]
-W, --whitelist= whitelist path [$WHITELIST]
-U, --usbids= usbids path (default: /var/lib/usbutils/usb.ids) [$USBIDS]
events:
-S, --events.source=[local|remote|database] events target
--events.path= log directory (default: /var/log/)
export:
-F, --events.export.format=[json|xml|pdf] events export format (default: pdf) [$EVENTS_EXPORT_FORMAT]
remote:
-I, --events.remote.ip= ip address [$EVENTS_REMOTE_IP]
--events.remote.port= ssh port (default: 22) [$EVENTS_REMOTE_PORT]
-L, --events.remote.login= login [$EVENTS_REMOTE_LOGIN]
-P, --events.remote.password= password [$EVENTS_REMOTE_PASSWORD]
Help Options:
-h, --help Show this help message
./luft -cm -S=local -W=99_PDAC_LOCAL_flash.rules
./luft -cm -W=99_PDAC_LOCAL_flash.rules -S=remote -I=10.211.55.11 -L=user -P=password
./luft -cmE -S=local -W=99_PDAC_LOCAL_flash.rules
- Rewrite all ugly code
- Update usb.ids
- View events with data \ time intervals
- Search usb device with only one of (vid | pid)
For any questions — tg: @cffaedfe.
This project is under the MIT License. See the LICENSE file for the full license text.