Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/cdpxe/networkcovertchannels

Some network covert channel projects of my own research, containing a protocol channel tool (protocol switching covert channel, PCT/PSCC), a protocol hopping covert channel (PHCC) tool, the protocol channel-aware active warden (PCAW) and ... VSTT.
https://github.com/cdpxe/networkcovertchannels

active covert-channel information-hiding information-security infosec network-analysis network-forensics network-science network-security network-steganography network-traffic-generator protocol-channels protocol-hopping protocol-hopping-covert-channels protocol-switching-covert-channels scientific-software secret-sharing steganography stego warden

Last synced: 3 months ago
JSON representation

Some network covert channel projects of my own research, containing a protocol channel tool (protocol switching covert channel, PCT/PSCC), a protocol hopping covert channel (PHCC) tool, the protocol channel-aware active warden (PCAW) and ... VSTT.

Awesome Lists containing this project

README 

        
# [Steffen Wendzel](https://www.wendzel.de)'s Network Covert Channel Tools



This repository contains some of my covert channel projects and also refers to some other repositories where I host my additional covert channel projects.



If you need an introduction, check out **[my free open online class on network covert channels](https://github.com/cdpxe/Network-Covert-Channels-A-University-level-Course/)**.



## In this repository:



- [pct](https://github.com/cdpxe/NetworkCovertChannels/tree/master/pct): *Protocol Channel Tool* (`pct` a PoC implementation to show that so-called protocol channels are feasible).

- [phcct](https://github.com/cdpxe/NetworkCovertChannels/tree/master/phcct): *Protocol Hopping Covert Channel Tool* (`phcct` was the first (2007) implementation of a protocol hopping covert channel).

- [vstt](https://github.com/cdpxe/NetworkCovertChannels/tree/master/vstt): *Very Strange Tunneling Tool* (this was my first network CC tool. I wrote `vstt` as a 2nd semester student. It can tunnel through ICMP, TCP, ...).

- [pcaw](https://github.com/cdpxe/NetworkCovertChannels/tree/master/pcaw): *Protocol Channel-aware Active Warden* (`pcaw` is a countermeasure to reduce the channel successful transfer bitrate/capacity of protocol channels (and protocol hopping covert channels), I wrote this in 2012 as contribution to my PhD thesis).



## My other covert channel projects on GitHub



- [NeFiAS](https://github.com/cdpxe/nefias/): *Network Forensic & Anomaly Detection System* (tool for covert channel/network steganography detection).

- [CCEAP](https://github.com/cdpxe/CCEAP): *Covert Channel Educational Analysis Protocol* (a tool for teaching network covert channel patterns).

- [NELphase](https://github.com/cdpxe/NELphase): *Network Environment Learning Phase* (a tool that implements a covert channel capable of performing an network environment learning (NEL) phase and that can be used to test active and passive wardens).



## Tools of my students



- [DYST](https://github.com/NIoSaT/DYST): The first *history covert channel* implementation

- [WiFi Reconnection-based Covert Channel](https://github.com/NIoSaT/WiFi_Reconnection_CovertChannel): My PhD student Sebastian Zillien developed this PoC code to demonstrate a WiFi reconnection-based covert channel that exploits pattern [PT15 (Artificial Reconnections)](https://ih-patterns.blogspot.com/p/pt15-artificial-reconnections.html) by forcing WiFi clients to reconnect. The channel can provide anonymity for covert sender and covert receiver.

- [CoAP Reset-/Reconnection-based Covert Channels](https://github.com/NIoSaT/CoAP-Covert-Channels): Another tool by my PhD students.



## Other Stego Tools



- Luca's list of stego tools on Github: [https://github.com/lucacav/steg-tools](https://github.com/lucacav/steg-tools)