https://github.com/lindhe/midbro

DAT300 Group 3 Code
https://github.com/lindhe/midbro

ids network-analysis network-capture network-monitoring security

Last synced: over 1 year ago
JSON representation

DAT300 Group 3 Code

• Host: GitHub
• URL: https://github.com/lindhe/midbro
• Owner: lindhe
• License: mit
• Created: 2017-09-19T12:01:21.000Z (over 8 years ago)
• Default Branch: master
• Last Pushed: 2018-04-06T11:07:47.000Z (about 8 years ago)
• Last Synced: 2025-01-21T02:10:00.384Z (over 1 year ago)
• Topics: ids, network-analysis, network-capture, network-monitoring, security
• Language: C
• Size: 175 KB
• Stars: 0
• Watchers: 5
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# Midbro – Packet Capturing for Intrusion Detection Systems

Created by Robert Gustafsson, Robin Krahl and Andreas Lindhé in DAT300 2017 at

Chalmers University of Technology. Copyright belongs to the authors.

All code is published under the MIT license: https://opensource.org/licenses/MIT

## Dependencies

These dependencies are packaged in the Debian repositories, but are also

available on other platforms.

* Bro (`bro`)

* Broccoli (`libbroccoli-dev`)

* Tcpreplay (`tcpreplay`)

## Workflow

0. Compile and export library path

1. Start Bro

2. Start the consumer (midbro_test)

3. Send network traffic

## Example usage:

The commands below assume you are in the root directory of this repository.

### 0. Compile & export path

`make`

`export LD_LIBRARY_PATH=$(pwd)/lib`

**Example:** `make midbro_test`

### 1. Start Bro

`sudo bro -b -C -i lo script/mid.bro Log::default_writer=Log::WRITER_NONE`

### 2. Start the consumer (`midbro_test`)

`./bin/midbro_test`

### 3. Send network traffic

`sudo tcpreplay -i lo -M 100.0 livedata.cap`