vikwin / pcapfex Goto Github PK
View Code? Open in Web Editor NEW'Packet Capture Forensic Evidence eXtractor' is a tool that finds and extracts files from packet capture files
License: Apache License 2.0
pcapfex's People
Contributors
Stargazers
Watchers
Forkers
sha8e upwnothing yotamho deleskie fredericblaison knightth0r icakir jmmeacham ro9ueadmin jrodriguez556 awantoch machix djhohnstein mlynchcogent sy-fur zeroaltitude svdvmxwl marsalans beerandgin jonnycrunch malyshusness ness993 whackyhack bsrinivasguptha johndoex1 seabreg ma5onic 1337g s0u1sb4n3 blue-infosec jryberg mmg1 5l1v3r1 d3sen hartl3y94 godlance lnt3rrupt sectestt wreko badexceptionpcapfex's Issues
Virus detected in file orig_file.exe
When I downloaded the code, my anti-virus program detected a virus in the file orig_file.exe which is in the folder pcapfex-master\tests\scenarios\4.6.
The antivirus report was:
Event: Risk Found!
Security risk detected: Trojan.ADH.SMH
File: pcapfex\pcapfex-master\tests\scenarios\4.6\orig_file.exe
Location: pcapfex\pcapfex-master\tests\scenarios\4.6
Handle incomplete captures
Sometimes a capture file contains incomplete packets. pcapfex would fail when dpkt raises NeedData.
File "./pcapfex/pcapfex.py", line 36, in <module>
dispatcher.run()
File "./pcapfex/core/Dispatcher.py", line 34, in run
streambuilder = StreamBuilder(self.pcapfile, **self.kwargs)
File "./pcapfex/core/Streams/StreamBuilder.py", line 36, in __init__
self.__parsePcapfile(pcapfile)
File "./pcapfex/core/Streams/StreamBuilder.py", line 85, in __parsePcapfile
eth = dpkt.ethernet.Ethernet(rawpacket)
File "/Library/Python/2.7/site-packages/dpkt/ethernet.py", line 79, in __init__
dpkt.Packet.__init__(self, *args, **kwargs)
File "/Library/Python/2.7/site-packages/dpkt/dpkt.py", line 92, in __init__
raise NeedData
dpkt.dpkt.NeedData
I submitted a PR #5 to address this.
How to migrate to Python3
I just use 2to3 to convert all py file to python3 version,it can runs, but has many encoding problem. So I replace all StringIO to BytesIO. But it doesn't work either
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.