[Analyzer] BGP-Ranking

[mlodic]

Name

BGP-Ranking

Link

https://github.com/D4-project/BGP-Ranking

Type of analyzer

for IP only:

• first query to get the ASN: https://github.com/D4-project/BGP-Ranking#get-the-asn-from-an-ip-or-a-prefix
• second query to get the rank: https://github.com/D4-project/BGP-Ranking#get-the-ranking-of-the-as
• (optional, enabled by a parameter) third query to get history: https://github.com/D4-project/BGP-Ranking#get-historical-information-for-an-asn

Why should we use it

Free online service provided by CIRCL

Possible implementation

Follow the guide on Github

[revv2703]

hello @mlodic , @abheektripathy i would like to work on this issue :)

[abheektripathy]

sure go for it @revv2703

[g4ze]

assign pls

[g4ze]

Hi! @mlodic here the second and third query does not require any ip but just an ASN, so which approach would you like to implement the query?:

• use ASN as the observable_name, will lead the scanner type to become more flexible to include integers.
• use ASN as another paraeter, but this imposes us to have atleast some type of observable name, which would be useless.

[mlodic]

the second query must use the AS value extracted by the first query, that's the idea.

Then, the third query requires the AS too so you have it for that query too. The only difference is that I would make this query optional because it could retrieve a lot and useless data. This is why I'd leverage a parameter and set the extraction of this data by enabled by default

[mlodic]

maybe you can use https://pypi.org/project/pybgpranking2/ if you like instead of just classic requests -> not required, only if the library works as intended and simplify the process

[mlodic]

solved in v6.0.0