This project analyzes ransomware infections using data retrieved from the Shodan API. It visualizes infected hosts on an interactive world map using ggplot2 and plotly.
- Shodan API Integration: Fetches live data on ransomware-infected hosts.
- Interactive Map: Uses
ggplot2andplotlyfor a dynamic geographic display. - Secure API Key Handling: Hides API credentials using environment variables.
Before activating the lock file, ensure you have the renv package installed:
install.packages("renv")
library(renv) # Loads the renv package
renv::restore() # Install exact packages used during developmentAdd your Shodan API key to the .Renviron file to avoid exposing it in your code:
1. Open .Renviron: file.edit("~/.Renviron")
2. Add your API key: SHODAN_API_KEY=your_api_key_here
3. Save and restart R.
4. Access it securely in R: api_key <- Sys.getenv("SHODAN_API_KEY")
shodan_ransomware.csv contains data on ransomware-infected devices retrieved from the Shodan API.
| Column Name | Description |
|---|---|
| IP Address | The IP address of the device. |
| Port | The port number being used. |
| Transport | The transport protocol used (e.g., TCP, UDP). |
| Service | The name of the service running on the port. |
| Operating System | The operating system running on the device. |
| Country | The country where the device is located. |
| Country Code | The ISO 3166 country code. |
| City | The city where the device is located. |
| Longitude | The geographic longitude of the device. |
| Latitude | The geographic latitude of the device. |
| Ransom Letter | The ransom letter found in the data. |
- Automate periodic data fetching for time-series analysis.
- Implement machine learning models to predict ransomware outbreaks.
- Enhance visualization with additional geospatial insights.
- Add more API query examples
This project is open-source under the MIT License.
Chris Campbell - GitHub
