pgsqlpot 2.0.0__py2.py3-none-any.whl

pgsqlpot/data/docs/geoipupdtask.ps1

@@ -0,0 +1,270 @@
+<#
+
+.SYNOPSIS
+
+Create the task for automatic updating of the GeoIP database
+
+.DESCRIPTION
+
+This PowerShell script creates (or removes) the Windows task that
+automatically updates MaxMind's GeoIP database every second Wednesday
+of the month. If the task with the specified name and in the specified
+folder already exists, it's properties will be modified as specified
+by the other options.
+
+.PARAMETER taskName
+
+Name of the updating task (default: "GeoIPUpdate").
+
+.PARAMETER taskDescription
+
+Description of the task (default: "GeoIP database updater")
+
+.PARAMETER taskPath
+
+Path of the updater task (default: "\")
+
+.PARAMETER runTime
+
+Time of the day when the task should be run (default: "00:00:00").
+
+.PARAMETER geoipupdate
+
+Path to the program "geoipupdate.exe" (default: "geoipupdate.exe")
+
+.PARAMETER geoipconfig
+
+Path to the config for for the program "geoipupdate.exe" (default: "geoip.cfg")
+
+.PARAMETER remove
+
+Delete the task with the specified name instead of creating it.
+
+.PARAMETER silent
+
+Do not display any information messages.
+
+.PARAMETER help
+
+Show short usage help and exit.
+
+.EXAMPLE
+
+.\geoipupdtask.ps1
+
+Creates a task named "GeoIPUpdate" that runs at 00:00 every second
+Wednesday of the month and updates the GeoIP database.
+
+.EXAMPLE
+
+.\geoipupdtask.ps1 -taskname "GeoIP Updater" -runtime 03:15
+
+Creates a task named "GeoIP Updater" that runs at 03:15:00 every second
+Wednesday of the month and updates the GeoIP database.
+
+.EXAMPLE
+
+.\geoipupdtask.ps1 -remove
+
+Removes the task named "GeoIPUpdate".
+
+#>
+
+[CmdletBinding()]
+Param (
+    [string] $taskName = "GeoIPUpdate",	# Task name
+    [string] $taskDescription = "GeoIP database updater",	# Task description
+    [string] $taskPath = "\",	# Task path
+    [string] $runTime = "00:00:00",	# Time of the day at which the task will run
+    [string] $geoipupdate = "geoipupdate.exe",	# Path to the program geoipupdate.exe
+    [string] $geoipconfig = "geoip.cfg",	# Path to the config file of the program geoipupdate.exe
+    [switch] $remove,	# Remove the task instead of creating it
+    [switch] $silent,	# If specified, the information messages are suppressed
+    [switch] $help	# Show usage help and exit
+)
+
+$ErrorActionPreference = "Stop"
+
+function removeTask {
+    Param (
+        [string] $taskName = "GeoIPUpdate",
+        [string] $taskPath = "\",
+        [bool] $silent = $false
+    )
+    $task = Get-ScheduledTask -TaskName $taskName -TaskPath $taskPath -ErrorAction SilentlyContinue
+    if (-not $task) {
+        Write-Host "The task '$taskName' does not exist." -ForegroundColor Red
+        return 1
+    }
+    if (-not $silent) {
+        Write-Output "Removing the task named '$taskPath$taskName'."
+    }
+    Unregister-ScheduledTask -TaskPath $taskPath -TaskName $taskName -Confirm: $false
+    return 0
+}
+
+Function ConvertTo-BitFlag {
+    [OutputType([int])]
+    param (
+        [Parameter(Mandatory, ValueFromPipeline)]
+        [int[]]
+        $InputObject
+    )
+
+    begin {
+        $val = 0
+    }
+    process {
+        foreach ($i in $InputObject) {
+            $val = $val -bor (1 -shl ($i - 1))
+        }
+    }
+    end {
+        $val
+    }
+}
+
+function createTask {
+    Param (
+        [string] $taskName = "GeoIPUpdate",
+        [string] $taskDescription = "GeoIP database updater",
+        [string] $taskPath = "\",
+        [string] $runTime = "00:00:00",
+        [string] $geoipupdate,
+        [string] $geoipconfig,
+        [bool] $silent = $false
+    )
+    try {
+        $parsedTime = [TimeSpan]::Parse($runTime)
+    }
+    catch {
+        Write-Host "'$runTime' is not a valid time." -ForegroundColor Red
+        return 1
+    }
+
+    if (-not $taskPath.StartsWith("\")) {
+        $taskPath = "\" + $taskPath
+    }
+    if (-not $taskPath.EndsWith("\")) {
+        $taskPath = $taskPath + "\"
+    }
+
+    $task = Get-ScheduledTask -TaskName $taskName -TaskPath $taskPath -ErrorAction SilentlyContinue
+
+    if (-not $silent) {
+        if ($task) {
+            Write-Host "The task '$taskPath$taskName' already exists."
+            Write-Host "Its properties will be modified accordingly."
+            Write-Host "Task description set to '$taskDescription'."
+        }
+        else {
+            Write-Host "Creating task named '$taskPath$taskName', described as '$taskDescription'."
+        }
+        Write-Host "The task will be run at $parsedTime every 2nd Wednesday of the month."
+        Write-Host "It will execute the program '`"$geoipupdate`"' with the arguments '-f `"$geoipconfig`"'."
+    }
+
+    $TASK_ACTION_EXEC = 0
+    $TASK_LOGON_S4U = 2
+    $TASK_TRIGGER_MONTHLYDOW = 5
+    $TASK_CREATE_OR_UPDATE = 6
+    $TASK_COMPATIBILITY_V2_4 = 6
+
+    $start = (Get-Date).ToString("yyyy-MM-dd") + "T" + $runTime
+    $daysOfWeek = @([DayOfWeek]::Wednesday)
+    $weeksOfMonth = @(2)
+    $monthsOfYear = @(1..12)
+
+    $service = New-Object -ComObject Schedule.Service
+    $service.Connect()
+    
+    try {
+        $folder = $service.GetFolder($taskPath)
+    }
+    catch {
+        if (-not $silent) {
+            Write-Host "Task folder '$taskPath' does not exist. Creating it."
+        }
+        $folderName = $taskPath.Trim('\')
+        
+        if ($folderName -eq "") {
+            $folder = $service.GetFolder("\")
+        }
+        else {
+            $pathParts = $folderName -split '\\'
+            $currentFolder = $service.GetFolder("\")
+            
+            foreach ($part in $pathParts) {
+                if ($part -ne "") {
+                    try {
+                        $currentFolder = $currentFolder.GetFolder($part)
+                    }
+                    catch {
+                        $currentFolder = $currentFolder.CreateFolder($part)
+                    }
+                }
+            }
+            
+            $folder = $currentFolder
+        }
+    }
+
+    $task = $service.NewTask(0)
+    $task.RegistrationInfo.Description = $taskDescription
+    $action = $task.Actions.Create($TASK_ACTION_EXEC)
+    $trigger = $task.Triggers.Create($TASK_TRIGGER_MONTHLYDOW)
+    $settings = $task.Settings
+
+    $action.Path = "`"$geoipupdate`""
+    $action.Arguments = "-f `"$geoipconfig`""
+
+    $trigger.StartBoundary = $start
+    $trigger.DaysOfWeek = $daysOfWeek | ForEach-Object { $_ + 1 } | ConvertTo-BitFlag
+    $trigger.WeeksOfMonth = $weeksOfMonth | ConvertTo-BitFlag
+    $trigger.MonthsOfYear = $monthsOfYear | ConvertTo-BitFlag
+
+    $settings.Compatibility = $TASK_COMPATIBILITY_V2_4
+    $settings.StartWhenAvailable = $true
+    $settings.Hidden = $true
+    $settings.RunOnlyIfNetworkAvailable = $true
+    $settings.DisallowStartIfOnBatteries = $false
+
+    $null = $folder.RegisterTaskDefinition($taskName, $task, $TASK_CREATE_OR_UPDATE, $null, $null, $TASK_LOGON_S4U)
+
+    return 0
+}
+
+if ($help) {
+    $scriptName = $MyInvocation.MyCommand.Name
+    Write-Host "Usage: $scriptName [[-taskname] TaskName] [[-taskdescription] TaskDescription] [[-taskpath] TaskPath]"
+    Write-Host "`t`t`t[[-geoipupdate] GeoIPUpdateProg] [[-geoipconfig] GeoIPUpdateConf]"
+    Write-Host "`t`t`t[[-runtime] RunTime] [-remove] [-silent] [-help]"
+    Write-Host "`tTaskName`tTask name (default: 'GeoIPUpdate')"
+    Write-Host "`tTaskDescription`tTask description (default: 'GeoIP database updater')"
+    Write-Host "`tTaskPath`tTask path; specify both leading and trailing '\' (default: '\')"
+    Write-Host "`tRunTime`t`tTime of the day at which the task should run (default: '00:00:00')"
+    Write-Host "`tGeoIPUpdateProg`tPath to the program 'geoipupdate.exe' (default: 'geoipupdate.exe')"
+    Write-Host "`tGeoIPUpdateConf`tPath to the config file of the program 'geoipupdate.exe' (default: 'geoip.cfg')"
+    Write-Host "`tremove`t`tRemove the task (if it exists) instead of creating it"
+    Write-Host "`tsilent`t`tSuppress information messages"
+    Write-Host "`thelp`t`tShow this help and exit"
+    Exit
+}
+
+if (-not(Test-Path -path $geoipconfig)) {
+    Write-Host "Cannot find the file '$geoipconfig'." -ForegroundColor Red
+    Exit 1
+}
+
+if ($null -eq (Get-Command $geoipupdate -ErrorAction SilentlyContinue)) {
+    Write-Host "Cannot find the program '$geoipupdate'." -ForegroundColor Red
+    Exit 1
+}
+
+if ($remove) {
+    $errorcode = removeTask $taskName $taskPath $silent
+} else {
+    $errorcode = createTask $taskName $taskDescription $taskPath $runTime $geoipupdate $geoipconfig $silent
+}
+
+Exit $errorcode

pgsqlpot/data/docs/mysql/README.md

@@ -0,0 +1,176 @@
+# Sending the Output of the Honeypot to a MySQL Database
+
+(For installation on Windows, see the corresponding [installation document](READMEWIN.md))
+
+- [Sending the Output of the Honeypot to a MySQL Database](#sending-the-output-of-the-honeypot-to-a-mysql-database)
+  - [Prerequisites](#prerequisites)
+  - [Installation](#installation)
+  - [MySQL Configuration](#mysql-configuration)
+  - [Honeypot Configuration](#honeypot-configuration)
+  - [Restart the honeypot](#restart-the-honeypot)
+
+## Prerequisites
+
+- Working honeypot installation
+- MySQL Server installation
+
+**Note on Python 2.7:** Prebuilt `mysqlclient` wheels are not available for
+Python 2.7. You will need `libmysqlclient-dev` installed system-wide and a C
+compiler available to build it from source. On Python 3.x this is not an
+issue as prebuilt wheels are available via PyPI.
+
+## Installation
+
+When writing to a MySQL database, the honeypot uses the free databases
+provided by MaxMind for the purposes of geoloacting the IP addresses.
+Start by installing the library necessary to work with these databases
+from an account that can sudo (i.e., not from the user `pgsqlpot`):
+
+```bash
+sudo add-apt-repository ppa:maxmind/ppa
+sudo apt-get update
+sudo apt-get install libmysqlclient-dev geoipupdate
+```
+
+Now switch to the `pgsqlpot` user:
+
+```bash
+sudo su - pgsqlpot
+cd ~/pgsqlpot-workdir
+```
+
+Go to the directory `data`, where the geolocation databases will reside:
+
+```bash
+cd data
+```
+
+Create in this directory a file named `geoip.cfg` with the following contents:
+
+```geoip.cfg
+AccountID <ACCOUNT>
+LicenseKey <KEY>
+EditionIDs GeoLite2-City GeoLite2-ASN
+DatabaseDirectory /home/pgsqlpot/pgsqlpot-workdir/data
+LockFile /home/pgsqlpot/pgsqlpot-workdir/data/.geoipupdate.lock
+```
+
+Change the paths in the options `DatabaseDirectory` and `LockFile` if you
+have opted to use paths different from the ones suggested by the
+honeypot installation documentation. Make sure you replace `<ACCOUNT>`
+and `<KEY>` with the account and API key obtained from MaxMind.
+
+In order to be able to download the MaxMind geolocation databases (either
+manually or in an automated way), you need a (free) account at their site.
+You can create such an account [there](https://www.maxmind.com/en/geolite2/signup).
+Creating it involves choosing a user name and a password, providing some
+personal data like country of residence, industry in which you're working,
+intended use for their databases, an e-mail address, and also agreeing with
+their terms and conditions. Once the account is created, you can get your
+AccountID and LicenseKey from it.
+
+Download the latest version of the Maxmind geolocation databases:
+
+```bash
+geoipupdate -f geoip.cfg
+```
+
+To have the database updated automatically (it is updated on MaxMind's site
+every second Tuesday of each month, so download it every second Wednesday),
+create a crontab job (`crontab -e`) and enter the following:
+
+```crontab
+# Update the geoIP database at midnight on the 2nd Wednesday of each month:
+0 0 8-14 * * [ $(/bin/date +\%u) -eq 3 ] && /usr/bin/geoipupdate -f /home/pgsqlpot/pgsqlpot-workdir/data/geoip.cfg
+```
+
+Alternatively, if you already have the MaxMind geolocation databases installed
+and updated on your machine in some other place, use their respective paths in
+the `[output_mysql]` section of the file `honeypot.cfg`, as mentioned
+below.
+
+## MySQL Configuration
+
+First create a database named `pgsqlpot` and grant access to it to a user
+named `pgsqlpot`:
+
+```bash
+$ mysql -p -u root
+MySQL> CREATE DATABASE IF NOT EXISTS pgsqlpot;
+MySQL> CREATE USER IF NOT EXISTS 'pgsqlpot'@'localhost' IDENTIFIED WITH mysql_native_password BY 'PASSWORD HERE' PASSWORD EXPIRE NEVER;
+MySQL> GRANT ALTER, ALTER ROUTINE, CREATE, CREATE ROUTINE, CREATE TEMPORARY TABLES, CREATE VIEW, DELETE, DROP, EXECUTE, INDEX, INSERT, LOCK TABLES, SELECT, SHOW VIEW, TRIGGER, UPDATE ON pgsqlpot.* TO 'pgsqlpot'@'localhost';
+```
+
+(Make sure you specify a proper password that you want to use for the user
+`pgsqlpot` instead of 'PASSWORD HERE'.)
+
+If you're going to use a third-party tool for accessing the data from the
+database (e.g., [Grafana](https://www.grafana.com) for visualizing the data),
+it is advisable also to create a separate user that has read-only privileges
+to the database and have the third-party tool access the database as that
+user, so that in case the third-party tool contains some kind of vulnerability
+and is breached (and the attacker obtains the database user password from it),
+the attacker cannot modify the database:
+
+```bash
+MySQL> CREATE USER IF NOT EXISTS 'pgsqlpotReadOnly'@'localhost' IDENTIFIED WITH mysql_native_password BY 'OTHER PASSWORD HERE' PASSWORD EXPIRE NEVER;
+MySQL> GRANT SELECT ON pgsqlpot.* TO 'pgsqlpotReadOnly'@'localhost';
+```
+
+(Make sure you specify a proper password that you want to use for the user
+`pgsqlpotReadOnly` instead of 'OTHER PASSWORD HERE'.)
+
+Finally, make sure that the user-related changes are committed to the database:
+
+```mysql
+MySQL> FLUSH PRIVILEGES;
+MySQL> exit
+```
+
+Next, load the database schema:
+
+```bash
+$ cd ~/pgsqlpot-workdir
+$ mysql -p -u pgsqlpot pgsqlpot
+MySQL> source ./docs/mysql/mysql.sql;
+MySQL> exit
+```
+
+## Honeypot Configuration
+
+Add the following entries to the file `~/pgsqlpot-workdir/etc/honeypot.cfg`
+
+```honeypot.cfg
+[output_mysql]
+enabled = true
+host = localhost
+database = pgsqlpot
+username = pgsqlpot
+password = PASSWORD HERE
+port = 3306
+# Whether to store geolocation data in the database
+geoip = true
+# Location of the databases used for geolocation
+geoip_citydb = data/GeoLite2-City.mmdb
+geoip_asndb = data/GeoLite2-ASN.mmdb
+```
+
+Make sure you use the password you specified for the MySQL user `pgsqlpot`
+instead of 'PASSWORD HERE'. Make sure the options `geoip_citydb` and
+`geoip_asndb` point to the correct paths of the two MaxMind geolocation
+databases.
+
+Since the file `honeypot.cfg` contains in cleartext the password for
+the database, it would be a good idea to change its permissions so that only
+the user `pgsqlpot` can access it:
+
+```bash
+chmod g-r,g-w,o-r,o-w ~/pgsqlpot-workdir/etc/honeypot.cfg
+```
+
+## Restart the honeypot
+
+```bash
+source ~/pgsqlpot-env/bin/activate
+pgsqlpot restart
+```

pgsqlpot/data/docs/mysql/READMEWIN.md

@@ -0,0 +1,157 @@
+# Sending the Output of the Honeypot to a MySQL Database
+
+- [Sending the Output of the Honeypot to a MySQL Database](#sending-the-output-of-the-honeypot-to-a-mysql-database)
+  - [Prerequisites](#prerequisites)
+  - [Installation](#installation)
+  - [MySQL Configuration](#mysql-configuration)
+  - [Honeypot Configuration](#honeypot-configuration)
+  - [Restart the honeypot](#restart-the-honeypot)
+
+## Prerequisites
+
+- Working honeypot installation
+- MySQL Server installation
+
+## Installation
+
+When writing to a MySQL database, the honeypot uses the free databases provided
+by MaxMind for the purposes of geoloacting the IP addresses. Start by
+downloading the database update program for your particular kind of Windows from
+[GitHub](https://github.com/maxmind/geoipupdate/releases) and put it in a
+directory listed in the `PATH` variable of the environment.
+
+Create an account at the [MaxMind web
+site](https://support.maxmind.com/knowledge-base/articles/create-a-maxmind-account),
+log in, go to "My Account" and then to "Manage license keys". Write down the
+account ID, generate a license key, and copy it.
+
+Go to the directory `data`, where the gelolocation databases will reside:
+
+```powershell
+PS C:\> cd \pgsqlpot-workdir\data
+```
+
+Create in this directory a file named `geoip.cfg` with the following contents:
+
+```geoip.cfg
+AccountID <ACCOUNT>
+LicenseKey <KEY>
+EditionIDs GeoLite2-City GeoLite2-ASN
+DatabaseDirectory C:\pgsqlpot-workdir\data
+LockFile C:\pgsqlpot-workdir\data\.geoipupdate.lock
+```
+
+Change the paths in the options `DatabaseDirectory` and `LockFile` if you
+have opted to use paths different from the ones suggested by the
+honeypot installation documentation. Make sure you replace `<ACCOUNT>`
+and `<KEY>` with the account and license key obtained from MaxMind.
+
+Download the latest version of the Maxmind geolocation databases:
+
+```powershell
+PS C:\pgsqlpot-workdir\data> geoipupdate -f geoip.cfg
+```
+
+To have the database updated automatically (it is updated on MaxMind's site
+every second Tuesday of each month, so download it every second Wednesday), log
+in as Administrator (or launch an elevated PowerShell window, if the user
+`HoneyPotter` is allowed to do it) and run the script `geoipupdtask.ps1` in the
+working subdirectory:
+
+```powershell
+PS C:\pgsqlpot-workdir\data> ..\geoipupdtask.ps1 
+```
+
+It expects that the program `geoipupdate.exe` resides in one of the directories
+listed in the `PATH` variable of the environment, that the configuration file
+for it is named `geoip.cfg` and resides in the current directory, and that the
+updating task is to be run at 00:00. Also, it creates an updating task named
+`GeoIPUpdate`, which resides in the task folder `\` and has the description
+`GeoIP database updater`. You can change any of these parameters via
+command-line options to the script:
+
+```powershell
+PS C:\pgsqlpot-workdir\data> ..\geoipupdtask.ps1 -TaskName "My GeoIP Database Updater" -TaskPath "\MyTasks" -TaskDescription "Updates the GeoIP database" -RunTime "03:00:00" -geoipupdate "C:\Program File\geoipupdate\geoipupdate.exe" -geoipconfig "C:\pgsqlpot-workdir\data\geoip.cfg"
+```
+
+If you already have the MaxMind geolocation databases installed and updated on
+your machine in some other place, use their respective paths in the
+`[output_mysql]` section of the file `honeypot.cfg`, as mentioned below.
+
+## MySQL Configuration
+
+First create a database named `pgsqlpot` and grant access to it to a user
+named `pgsqlpot`:
+
+```powershell
+PS C:\> mysql -p -u root
+MySQL> CREATE DATABASE IF NOT EXISTS pgsqlpot;
+MySQL> CREATE USER IF NOT EXISTS 'pgsqlpot'@'localhost' IDENTIFIED WITH mysql_native_password BY 'PASSWORD HERE' PASSWORD EXPIRE NEVER;
+MySQL> GRANT ALTER, ALTER ROUTINE, CREATE, CREATE ROUTINE, CREATE TEMPORARY TABLES, CREATE VIEW, DELETE, DROP, EXECUTE, INDEX, INSERT, LOCK TABLES, SELECT, SHOW VIEW, TRIGGER, UPDATE ON pgsqlpot.* TO 'pgsqlpot'@'localhost';
+```
+
+(Make sure you specify a proper password that you want to use for the user
+`pgsqlpot` instead of 'PASSWORD HERE'.)
+
+If you're going to use a third-party tool for accessing the data from the
+database (e.g., [Grafana](https://www.grafana.com) for visualizing the data),
+it is advisable also to create a separate user that has read-only privileges
+to the database and have the third-party tool access the database as that
+user, so that in case the third-party tool contains some kind of vulnerability
+and is breached (and the attacker obtains the database user password from it),
+the attacker cannot modify the database:
+
+```mysql
+MySQL> CREATE USER IF NOT EXISTS 'pgsqlpotReadOnly'@'localhost' IDENTIFIED WITH mysql_native_password BY 'OTHER PASSWORD HERE' PASSWORD EXPIRE NEVER;
+MySQL> GRANT SELECT ON pgsqlpot.* TO 'pgsqlpotReadOnly'@'localhost';
+```
+
+(Make sure you specify a proper password that you want to use for the user
+`pgsqlpotReadOnly` instead of 'OTHER PASSWORD HERE'.)
+
+Finally, make sure that the user-related changes are committed to the database:
+
+```mysql
+MySQL> FLUSH PRIVILEGES;
+MySQL> exit
+```
+
+Next, load the database schema:
+
+```powershell
+PS C:\> cd \pgsqlpot-workdir
+PS C:\pgsqlpot-workdir> mysql -p -u pgsqlpot pgsqlpot
+MySQL> source ./docs/mysql/mysql.sql;
+MySQL> exit
+```
+
+## Honeypot Configuration
+
+Add the following entries to the file `C:\pgsqlpot\etc\honeypot.cfg`
+
+```honeypot.cfg
+[output_mysql]
+enabled = true
+host = localhost
+database = pgsqlpot
+username = pgsqlpot
+password = PASSWORD HERE
+port = 3306
+# Whether to store geolocation data in the database
+geoip = true
+# Location of the databases used for geolocation
+geoip_citydb = data/GeoLite2-City.mmdb
+geoip_asndb = data/GeoLite2-ASN.mmdb
+```
+
+Make sure you use the password you specified for the MySQL user `pgsqlpot`
+instead of 'PASSWORD HERE'. Make sure the options `geoip_citydb` and
+`geoip_asndb` point to the correct paths of the two MaxMind geolocation
+databases.
+
+## Restart the honeypot
+
+```powershell
+PS C:\pgsqlpot-workdir> C:\pgsqlpot-env\scripts\activate.ps1
+(pgsqlpot-env) PS C:\pgsqlpot-workdir> pgsqlpot restart
+```

pgsqlpot/data/docs/mysql/mysql.sql

@@ -0,0 +1,85 @@
+CREATE TABLE IF NOT EXISTS `connections` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `session` CHAR(32) NOT NULL,
+  `timestamp` DATETIME DEFAULT NULL,
+  `operation` INT DEFAULT NULL,
+  `ip` VARCHAR(15) DEFAULT NULL,
+  `remote_port` INT DEFAULT NULL,
+  `local_host` VARCHAR(15) DEFAULT NULL,
+  `local_port` INT DEFAULT NULL,
+  `sensor` INT DEFAULT NULL,
+  PRIMARY KEY (`id`),
+  KEY `time_idx` (`timestamp`),
+  KEY `ip_idx` (`ip`),
+  KEY `ip2_idx` (`timestamp`, `ip`)
+);
+
+CREATE TABLE IF NOT EXISTS `operations` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `op_name` VARCHAR(20) NOT NULL,
+  PRIMARY KEY (`id`),
+  UNIQUE (`op_name`)
+);
+
+CREATE TABLE IF NOT EXISTS `credentials` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `session` CHAR(32) NOT NULL,
+  `username` INT DEFAULT NULL,
+  `password` INT DEFAULT NULL,
+  PRIMARY KEY (`id`)
+);
+
+CREATE TABLE IF NOT EXISTS `usernames` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `username` VARCHAR(255) DEFAULT NULL,
+  PRIMARY KEY (`id`),
+  UNIQUE (`username`)
+);
+
+CREATE TABLE IF NOT EXISTS `passwords` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `password` VARCHAR(255) DEFAULT NULL,
+  PRIMARY KEY (`id`),
+  UNIQUE (`password`)
+);
+
+CREATE TABLE IF NOT EXISTS `variables` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `session` VARCHAR(32) NOT NULL,
+  `var` INT DEFAULT NULL,
+  `val` INT DEFAULT NULL,
+  PRIMARY KEY (`id`)
+);
+
+CREATE TABLE IF NOT EXISTS `vars` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `var_name` VARCHAR(20) NOT NULL,
+  PRIMARY KEY (`id`),
+  UNIQUE(`var_name`)
+);
+
+CREATE TABLE IF NOT EXISTS `var_values` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `var_value` VARCHAR(255),
+  PRIMARY KEY (`id`),
+  UNIQUE(`var_value`)
+);
+
+CREATE TABLE IF NOT EXISTS `sensors` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `name` VARCHAR(255) DEFAULT NULL,
+  PRIMARY KEY (`id`),
+  UNIQUE (`name`)
+);
+
+CREATE TABLE IF NOT EXISTS `geolocation` (
+  `id` INT NOT NULL AUTO_INCREMENT,
+  `ip` VARCHAR(15) DEFAULT NULL,
+  `country_name` VARCHAR(45) DEFAULT '',
+  `country_iso_code` VARCHAR(2) DEFAULT '',
+  `city_name` VARCHAR(128) DEFAULT '',
+  `org` VARCHAR(128) DEFAULT '',
+  `org_asn` INT DEFAULT NULL,
+  PRIMARY KEY (`id`),
+  UNIQUE(`ip`)
+);