This project is part of improving Cuckoo Sandbox, for more information https://honeynet.org/gsoc/slot3 I will use Scapy to write protocols dissectors for: TCP, UDP, ICMP, DNS, HTTP, FTP, IRC, SMB, SIP, TELNET, SSH, IMAP, POP and H.323
License: Other
Python 100.00%
dissectors's Introduction
This Library:
Essentially, this library has been implemented to be a part of Cuckoo Sandbox
the automated malware analysis tool. This library is depend on Scapy library.
The Supported protocols:
1- this library can parse (dissect) these protocols:
TCP, UDP, ICMP, DNS, HTTP, FTP, IRC, SMB, SIP, TELNET, SMTP, SSH, IMAP and POP.
2- this library is aware of TCP reassembly.
3- this library is capable of recovering the downloaded files through HTTP, FTP and SMTP.
for any further questions or information please contact me.
[email protected]
Abdulellah Alsaheel
Traceback (most recent call last):
File "usedissector.py", line 3, in
from dissector import *
File "/root/Desktop/dissectors/dissector.py", line 41, in
from ftp import *
File "/root/Desktop/dissectors/ftp.py", line 383, in
class FTPData(Packet):
File "/root/Desktop/dissectors/ftp.py", line 389, in FTPData
fields_desc = [FTPDataField("data", "")]
File "/root/Desktop/dissectors/ftp.py", line 128, in init
self.name = name
AttributeError: 'FTPDataField' object attribute 'name' is read-only