d0rkl0rd
Projects
Updated 24 Dec 2011
NetXtract
| Pop | 61.48 |
|---|---|
| Vit | 1.04 |
Xtract attempts to demonstrate how Wireshark's powerful network traffic analysis capabilities can be combined with the file carving capabilities of programs such as Foremost and NetworkMiner in a manner that is portable and extensible (hence the choice of Perl). Specifically, it offers automated extraction of network stream sessions; visualization of networks via GraphViz; and integration of file carving capability. The scripts are intended as a proof-of-concept for how tedious tasks of reassembling TCP/UDP streams from network capture files and file carving based on these streams can be automated.
Updated 02 Sep 2011
Xtract
| Pop | 13.19 |
|---|---|
| Vit | 25.06 |
Xtract is an extendable, scriptable data extraction framework. It is meant to be a unified framework to perform data extraction tasks. It includes a sample module to identify JPEG files. A common, shared framework similar to this makes it possible to develop an easily deployable and commonly held set of data extraction tools that exceed the capability of any closed-source alternative. The script-based nature of Xtract makes it portable across architectures, and its modular design allows the easy addition of capabilities to identify new types of files or other data.
Updated 13 Nov 2011
XtractCarver
| Pop | 31.08 |
|---|---|
| Vit | 23.56 |
Xtract attempts to demonstrate how Wireshark's powerful network traffic analysis capabilities can be combined with the file carving capabilities of programs such as Foremost and NetworkMiner in a manner that is portable and extensible (hence the choice of Perl). Specifically, it offers: automated extraction of network stream sessions; visualization of networks via GraphViz; and integration of file carving capability. The scripts are intended as a proof-of-concept for how tedious tasks of reassembling TCP/UDP streams from network capture files and file carving based on these streams can be automated.
