IVRE
Overview
Installation
Usage
Some use cases
Active recon
Passive
Flow
Web User Interface
Web Authentication
IVRE with Kibana
MCP server
Development
Licenses:
IVRE: GPL v3
Licenses for external files
IVRE
Usage
View page source
Usage
Some use cases
Your own Shodan / ZoomEye / Censys / Binaryedgeio / whatever
Your own Passive DNS service
MCP server (LLM agents)
YETI plugin
Cortex analyzer
OpenCTI connector
Obsidian plugin
Blog posts and other resources
Active recon
Scanning
With Nmap, Masscan or Zgrab2
Splitting wide scans
Enjoying the results
CLI
Python module
Passive
With Zeek
With p0f
Enjoying the results
CLI
Python module
Flow
Usage
Data insertion
Data exploration
CLI
Web UI
Overview
Interaction
Flow Filters
Web User Interface
The interface
The top navigation bar
The left side bar
Scan results
Available commands
Command specification
Command list
Filters
Sort
Display
Web Authentication
Quick Start
Configuration Reference
General
Registration Policy
Providers
GitHub
Google
Microsoft (Azure AD / Entra ID)
Generic OIDC
Keycloak example
Authentik example
Email (Magic Link)
Reverse Proxy Setup
nginx + uwsgi
Cloudflare
Web Server Authentication
How it works
Without built-in auth
With built-in auth
API Keys
Via the Web UI
Via the CLI
Usage
Groups and Access Control
Assigning Groups
Group-Based Filters
Admin Panel
CLI Reference
Example Configuration
IVRE with Kibana
Installation
View creation
About views
Configuration
Index creation & Data insertion
Using Kibana
MCP server
Installation
Data purposes
Tool reference
Filter builders
Filter combinators
Query tools
HTTP transport
Starting the HTTP transport
Authentication
Safety defaults
Reverse proxy (nginx)
HTTP client configuration
Docker
Client setup
OpenCode
Claude Code
Claude Desktop
Cursor
VS Code (GitHub Copilot)
Windsurf
JetBrains IDEs
Extending the server