base on Real-time HTTP Intrusion Detection > [!IMPORTANT] > Dear users, > > We wanted to share some important updates regarding the development of teler IDS. > > 🛑 The development of teler IDS is currently on hold. However, we're thrilled to inform you that we've decided to take a bold step by embarking on a complete refactor, starting from scratch to enhance the overall development process. 🚀 > > In parallel, we're actively laying down the roadmap for teler IDS v3. 📝<br> > What we can reveal at this point is that version 3 will leverage eBPF & [teler-waf](https://github.com/kitabisa/teler-waf) as its support, promising advanced features and capabilities. 🌟 > > If you have feedback or suggestions regarding the features you'd like to see in teler IDS v3, kindly participate in our anonymous survey 👉 https://s.surveyplanet.com/8he6p7rq > > Stay tuned for more updates as we continue to innovate and enhance our intrusion detection system! Tipis-tipis asal menyala abangkuuhh! 🔥🔝🙌🏼 > > Best!<br> > dw1 > > --- > > _{As announced in [teler-announce#Fm8Yjh_4of0](https://groups.google.com/g/teler-announce/c/Fm8Yjh_4of0).} > [!NOTE] > In the meantime, you can install and download the latest **v2** version to continue using it. <p align="center"> <a href="#"><img alt="teler" src="https://user-images.githubusercontent.com/25837540/97091757-7200d880-1668-11eb-82c4-e5c4971d2bc8.png" height="300" /></a> <h3 align="center"><b>teler</b></h3> </p> <p align="center"> <a href="#"><img alt="Kitabisa Security" src="https://img.shields.io/badge/kitabisa-security%20project-blue" /></a> <a href="/LICENSE"><img alt="License" src="https://img.shields.io/badge/License-Apache%202.0-yellowgreen" /></a> <a href="http://golang.org"><img alt="made with Go" src="https://img.shields.io/badge/made%20with-Go-brightgreen" /></a> <a href="https://github.com/kitabisa/teler/releases"><img alt="Release" src="https://img.shields.io/github/v/release/kitabisa/teler?color=blueviolet" /></a> <a href="#"><img alt="Platform" src="https://img.shields.io/badge/platform-osx%2Flinux%2Fwindows-green" /></a> <a href="https://github.com/kitabisa/teler/issues"><img alt="GitHub issues" src="https://img.shields.io/github/issues/kitabisa/teler" /></a> <h3 align="center"><b>teler</b></h3> </p> <!-- [](https://gitter.im/kitabisa-teler/community?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge) --> <!-- [](https://goreportcard.com/report/teler.app) --> <p align="center"> Real-time HTTP Intrusion Detection <br /> <a href="/.github/CONTRIBUTING.md">Contribute</a> · <a href="/CHANGELOG.md">What's new</a> · <a href="https://github.com/kitabisa/teler/issues/new/choose">Report Bug</a> · <a href="https://github.com/kitabisa/teler/issues/new/choose">Request Feature</a> </p> --- `teler` is an **real-time intrusion detection** and threat alert based on web log that runs in a **terminal** with resources that we collect and provide by the community. :heart: | **CLI** | **Dashboard** | |--------- |--------------- | | [](#) | [](#) | > [!NOTE] > If you upgrade from prior to v2 frontwards there will be some **break changes** that affect configuration files. > Appropriate adaptations can refer to [teler.example.yaml](https://github.com/kitabisa/teler/blob/v2/teler.example.yaml) file. **See also:** - [kitabisa/teler-waf](https://github.com/kitabisa/teler-waf): teler-waf is a Go HTTP middleware that provide teler IDS functionality to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate into existing Go applications. ## Table of Contents - [Features](#features) - [Why teler?](#why-teler) - [Demo](#demo) - [Documentation](#documentation) - [Supporting Materials](#supporting-materials) - [Contributors](#contributors) - [Resources](#resources) - [Pronunciation](#pronunciation) - [Changes](#changes) - [License](#license) ## Features * **Real-time**: Analyze logs and identify suspicious activity in real-time. * **Alerting**: teler provides alerting when a threat is detected, push notifications include Slack, Mattermost, Telegram and Discord. * **Monitoring**: We've our own metrics if you want to monitor threats easily, and we use Prometheus for that. * **Logging**: is also provided in file form or sends detected threats to the Zinc logs search engine. * **Latest resources**: Collections is continuously up-to-date. * **Minimal configuration**: You can just run it against your log file, write the log format and let teler analyze the log and show you alerts! * **Flexible log formats**: teler allows any custom log format string! It all depends on how you write the log format in configuration file. * **Custom threat rules**: Want to reach a wider range of threats instead of engine-based _(default)_ rules? You can customize threat rules! * **Incremental log processing**: Need data persistence rather than [buffer stream](https://linux.die.net/man/1/stdbuf)? teler has the ability to process logs incrementally through the on-disk persistence options. ## Why teler? teler was designed to be a fast, terminal-based threat analyzer. Its core idea is to quickly analyze and hunt threats in real time! ## Demo Here is a preview of `teler` with conditions of use as: | **Buffer-streams** | **Incremental** | |-------------------- |----------------- | | <a href="https://asciinema.org/a/367616" alt="teler"><img src="https://asciinema.org/a/367616.svg"></a> | <a href="https://asciinema.org/a/367610" alt="teler"><img src="https://asciinema.org/a/367610.svg"></a> | ## Documentation All related documentation about installation, usage & configuration is on **[teler.app](https://teler.app)**. ## Supporting Materials - [teler - Protect Your WebApp!](https://dw1.io/files/teler%20-%20Protect%20Your%20WebApp.pdf) Talks were brought to the **OWASP Jakarta: Virtual AppSec Indonesia 2020** event. - [Tutorial: Cyber Threat Hunting - Useful Threat Hunting Tools (Part One)](https://youtu.be/0m54WOXO6Gc), Semi Yulianto gave a brief explanation and how to use **teler** in the video. - [Empowering Teler HTTP Intrusion Detection as WAF with Fail2ban](https://link.medium.com/OXVZIMkZEeb). - [Detecting web attacks using Wazuh and teler](https://wazuh.com/blog/detecting-web-attacks-using-wazuh-and-teler/), integrate teler with a unified XDR and SIEM platform, Wazuh. ## Contributors [](https://github.com/kitabisa/teler/issues) This project exists thanks to all the people who contribute. To learn how to setup a development environment and for contribution guidelines, see [CONTRIBUTING.md](/.github/CONTRIBUTING.md). <!-- ALL-CONTRIBUTORS-LIST:START - Do not remove or modify this section --> <!-- prettier-ignore-start --> <!-- markdownlint-disable --> <table> <tr> <td align="center"><a href="https://dw1.io"><img src="https://avatars0.githubusercontent.com/u/25837540?v=4?s=100" width="100px;" alt=""/><br />_{<b>Dwi Siswanto</b>}</a><br /><a href="https://github.com/kitabisa/teler/commits?author=dwisiswant0" title="Code">💻</a> <a href="https://github.com/kitabisa/teler/commits?author=dwisiswant0" title="Documentation">📖</a> <a href="https://github.com/kitabisa/teler/commits?author=dwisiswant0" title="Tests">⚠️</a> <a href="#ideas-dwisiswant0" title="Ideas, Planning, & Feedback">🤔</a></td> <td align="center"><a href="https://projectdiscovery.io/open-source"><img src="https://avatars1.githubusercontent.com/u/50994705?v=4?s=100" width="100px;" alt=""/><br />_{<b>ProjectDiscovery</b>}</a><br /><a href="#tool-projectdiscovery" title="Tools">🔧</a></td> <td align="center"><a href="https://twitter.com/satyrius"><img src="https://avatars2.githubusercontent.com/u/278630?v=4?s=100" width="100px;" alt=""/><br />_{<b>Anton Egorov</b>}</a><br /><a href="#tool-satyrius" title="Tools">🔧</a></td> <td align="center"><a href="https://github.com/0ktavandi"><img src="https://avatars0.githubusercontent.com/u/26356781?v=4?s=100" width="100px;" alt=""/><br />_{<b>0ktavandi</b>}</a><br /><a href="#ideas-0ktavandi" title="Ideas, Planning, & Feedback">🤔</a></td> <td align="center"><a href="http:///instagram.com/fikcompany"><img src="https://avatars3.githubusercontent.com/u/73404079?v=4?s=100" width="100px;" alt=""/><br />_<b>Fik</b></a><br /><a href="#design-fikridhiyau" title="Design">🎨</a></td> <td align="center"><a href="https://github.com/fairyhunter13"><img src="https://avatars3.githubusercontent.com/u/12372147?v=4?s=100" width="100px;" alt=""/><br />_{<b>fairyhunter13</b>}</a><br /><a href="https://github.com/kitabisa/teler/commits?author=fairyhunter13" title="Tests">⚠️</a></td> <td align="center"><a href="http://zufardhiyaulhaq.com"><img src="https://avatars3.githubusercontent.com/u/11990726?v=4?s=100" width="100px;" alt=""/><br />_{<b>Zufar Dhiyaulhaq</b>}</a><br /><a href="https://github.com/kitabisa/teler/commits?author=zufardhiyaulhaq" title="Code">💻</a></td> </tr> <tr> <td align="center"><a href="https://github.com/JustHumanz"><img src="https://avatars3.githubusercontent.com/u/43176061?v=4?s=100" width="100px;" alt=""/><br />_{<b>Aldin Setiawan</b>}</a><br /><a href="https://github.com/kitabisa/teler/commits?author=JustHumanz" title="Code">💻</a> <a href="#a11y-JustHumanz" title="Accessibility">️️️️♿️</a></td> <td align="center"><a href="https://www.kirsle.net/"><img src="https://avatars2.githubusercontent.com/u/1663507?v=4?s=100" width="100px;" alt=""/><br />_{<b>Noah Petherbridge</b>}</a><br /><a href="#tool-kirsle" title="Tools">🔧</a></td> <td align="center"><a href="https://github.com/zackijack"><img src="https://avatars3.githubusercontent.com/u/1515471?v=4?s=100" width="100px;" alt=""/><br />_{<b>Zackky Muhammad</b>}</a><br /><a href="#infra-zackijack" title="Infrastructure (Hosting, Build-Tools, etc)">🚇</a></td> <td align="center"><a href="https://github.com/acarl005"><img src="https://avatars0.githubusercontent.com/u/8334252?v=4?s=100" width="100px;" alt=""/><br />_<b>Andy</b></a><br /><a href="#tool-acarl005" title="Tools">🔧</a></td> <td align="center"><a href="https://victoriametrics.com"><img src="https://avatars0.githubusercontent.com/u/283442?v=4?s=100" width="100px;" alt=""/><br />_{<b>Aliaksandr Valialkin</b>}</a><br /><a href="#tool-valyala" title="Tools">🔧</a></td> <td align="center"><a href="https://ma.rkus.io"><img src="https://avatars2.githubusercontent.com/u/1903284?v=4?s=100" width="100px;" alt=""/><br />_{<b>Markus Tenghamn</b>}</a><br /><a href="https://github.com/kitabisa/teler/issues?q=author%3Amarkustenghamn" title="Bug reports">🐛</a></td> <td align="center"><a href="https://github.com/brownchow"><img src="https://avatars0.githubusercontent.com/u/8622915?v=4?s=100" width="100px;" alt=""/><br />_<b>Rick</b></a><br /><a href="#maintenance-brownchow" title="Maintenance">🚧</a> <a href="https://github.com/kitabisa/teler/commits?author=brownchow" title="Code">💻</a></td> </tr> <tr> <td align="center"><a href="http://michael.bouvy.net/blog/"><img src="https://avatars.githubusercontent.com/u/1674029?v=4?s=100" width="100px;" alt=""/><br />_{<b>Michael BOUVY</b>}</a><br /><a href="https://github.com/kitabisa/teler/commits?author=michael-bouvy" title="Documentation">📖</a></td> <td align="center"><a href="https://github.com/ossie-git"><img src="https://avatars.githubusercontent.com/u/25382296?v=4?s=100" width="100px;" alt=""/><br />_{<b>oelnaggar</b>}</a><br /><a href="https://github.com/kitabisa/teler/commits?author=ossie-git" title="Documentation">📖</a> <a href="https://github.com/kitabisa/teler/issues?q=author%3Aossie-git" title="Bug reports">🐛</a></td> </tr> </table> <!-- markdownlint-restore --> <!-- prettier-ignore-end --> <!-- ALL-CONTRIBUTORS-LIST:END --> ### Resources All external resources used in this teler are **NOT** provided by us. See all peoples who involved in this resources at [teler Resource Collections](https://github.com/kitabisa/teler-resources). ## Pronunciation [`jv_id`](https://www.localeplanet.com/java/jv-ID/index.html) • **/télér/** — bagaimana bisa seorang pemuda itu teler hanya dengan meminum sloki ciu _(?)_ ## Changes For changes, see the [CHANGELOG.md](/CHANGELOG.md). ## Community We use the Google Groups as our dedicated mailing list. Subscribe to [teler-announce](https://groups.google.com/g/teler-announce) via [teler-announce+subscribe@googlegroups.com](mailto:teler-announce+subscribe@googlegroups.com) for important announcements, such as the availability of new releases. This subscription will keep you informed about significant developments related to [teler IDS](https://github.com/kitabisa/teler), [teler WAF](https://github.com/kitabisa/teler-waf), [teler Proxy](https://github.com/kitabisa/teler-proxy), and [teler Resources](https://github.com/kitabisa/teler-resources). For any [inquiries](https://github.com/kitabisa/teler/discussions/categories/q-a), [discussions](https://github.com/kitabisa/teler/discussions), or [issues](https://github.com/kitabisa/teler/issues) are being tracked here on GitHub. This is where we actively manage and address these aspects of our community engagement. ## License This program is developed and maintained by members of Kitabisa Security Team, and this is not an officially supported Kitabisa product. This program is free software: you can redistribute it and/or modify it under the terms of the [Apache license](/LICENSE). Kitabisa teler and any contributions are copyright © by Dwi Siswanto 2020-2022. [](https://starchart.cc/kitabisa/teler) ", Assign "at most 3 tags" to the expected json: {"id":"8703","tags":[]} "only from the tags list I provide: [{"id":77,"name":"3d"},{"id":89,"name":"agent"},{"id":17,"name":"ai"},{"id":54,"name":"algorithm"},{"id":24,"name":"api"},{"id":44,"name":"authentication"},{"id":3,"name":"aws"},{"id":27,"name":"backend"},{"id":60,"name":"benchmark"},{"id":72,"name":"best-practices"},{"id":39,"name":"bitcoin"},{"id":37,"name":"blockchain"},{"id":1,"name":"blog"},{"id":45,"name":"bundler"},{"id":58,"name":"cache"},{"id":21,"name":"chat"},{"id":49,"name":"cicd"},{"id":4,"name":"cli"},{"id":64,"name":"cloud-native"},{"id":48,"name":"cms"},{"id":61,"name":"compiler"},{"id":68,"name":"containerization"},{"id":92,"name":"crm"},{"id":34,"name":"data"},{"id":47,"name":"database"},{"id":8,"name":"declarative-gui "},{"id":9,"name":"deploy-tool"},{"id":53,"name":"desktop-app"},{"id":6,"name":"dev-exp-lib"},{"id":59,"name":"dev-tool"},{"id":13,"name":"ecommerce"},{"id":26,"name":"editor"},{"id":66,"name":"emulator"},{"id":62,"name":"filesystem"},{"id":80,"name":"finance"},{"id":15,"name":"firmware"},{"id":73,"name":"for-fun"},{"id":2,"name":"framework"},{"id":11,"name":"frontend"},{"id":22,"name":"game"},{"id":81,"name":"game-engine "},{"id":23,"name":"graphql"},{"id":84,"name":"gui"},{"id":91,"name":"http"},{"id":5,"name":"http-client"},{"id":51,"name":"iac"},{"id":30,"name":"ide"},{"id":78,"name":"iot"},{"id":40,"name":"json"},{"id":83,"name":"julian"},{"id":38,"name":"k8s"},{"id":31,"name":"language"},{"id":10,"name":"learning-resource"},{"id":33,"name":"lib"},{"id":41,"name":"linter"},{"id":28,"name":"lms"},{"id":16,"name":"logging"},{"id":76,"name":"low-code"},{"id":90,"name":"message-queue"},{"id":42,"name":"mobile-app"},{"id":18,"name":"monitoring"},{"id":36,"name":"networking"},{"id":7,"name":"node-version"},{"id":55,"name":"nosql"},{"id":57,"name":"observability"},{"id":46,"name":"orm"},{"id":52,"name":"os"},{"id":14,"name":"parser"},{"id":74,"name":"react"},{"id":82,"name":"real-time"},{"id":56,"name":"robot"},{"id":65,"name":"runtime"},{"id":32,"name":"sdk"},{"id":71,"name":"search"},{"id":63,"name":"secrets"},{"id":25,"name":"security"},{"id":85,"name":"server"},{"id":86,"name":"serverless"},{"id":70,"name":"storage"},{"id":75,"name":"system-design"},{"id":79,"name":"terminal"},{"id":29,"name":"testing"},{"id":12,"name":"ui"},{"id":50,"name":"ux"},{"id":88,"name":"video"},{"id":20,"name":"web-app"},{"id":35,"name":"web-server"},{"id":43,"name":"webassembly"},{"id":69,"name":"workflow"},{"id":87,"name":"yaml"}]" returns me the "expected json"