Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/ferhatelmas/ovizart-qualification
Helper to be selected for GSoC
https://github.com/ferhatelmas/ovizart-qualification
Last synced: 26 days ago
JSON representation
Helper to be selected for GSoC
- Host: GitHub
- URL: https://github.com/ferhatelmas/ovizart-qualification
- Owner: ferhatelmas
- Created: 2013-05-05T15:51:34.000Z (over 11 years ago)
- Default Branch: master
- Last Pushed: 2020-03-11T05:58:44.000Z (over 4 years ago)
- Last Synced: 2023-03-23T01:42:03.622Z (over 1 year ago)
- Language: Python
- Size: 412 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 1
-
Metadata Files:
- Readme: readme.md
Awesome Lists containing this project
README
### Explanations
1. First question is done via scapy. Values are normalized by the total number of the connections in the capture.
2. Second question is done via d3.js
3. I have imported a [library](https://github.com/cssaheel/dissectors) to parse IRC. After getting results, I have just written them into a file. Rest will depend on the application logic and I think it isn't interesting in terms of this test because what is left is only strings and extracting related parts in only string manipulation, not protocol dissecting.
4. Again, in terms of dissecting, I have used default IP, TCP layers of scapy. I have tried to check retransmission in the capture. Even if question is stated to encourage DNS packets, DNS packets are clean and suspicious activity are triggered a remote shell running on DNS port.