Skip to content

ggercek/gsoc-2013-honeynet-network-analyzer-coding-exam

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

gsoc-2013-honeynet-network-analyzer-coding-exam

Coding Exam for Honeynet 2013 - Network Analyzer Project

  1. By using http://wiki.wireshark.org/SampleCaptures?action=AttachFile&do=get&target=http.cap file, create a csv file. The format of the csv file should like the below: source,target,value Source: source ip Target: destination ip value: strength of the link between source and destination (by looking at the number of connections between source and destination you may define a value, the more connection the higher value you may define)

  2. By using the above csv file, create a forced directed graph. You may use d3.js. An HTML file should be created (display.html) that is displaying nodes (IP adresses) and connections between them.

  3. Write an IRC handler that reads a pcap and understands it and parse its information. The handler should be a class and the usage example should be demonstrated with the pcap sample.

  4. Write a DNS handler and test it for http://wiki.wireshark.org/SampleCaptures?action=AttachFile&do=get&target=dns-remoteshell.pcap The handler should understand the DNS anomaly and display the results.

Python is the preferred coding language. You may use whatever plugins you want. Put your source code to your GitHub accounts and send their links.

About

Coding Exam for Honeynet 2013 - Network Analyzer Project

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published