Since the installer downloads some packages using either apt or emerge depending on the distribution, then the installer needs to have access to Internet. The main installer prepares automatically the whole environment by compiling all the tools included within the framework as well as their dependencies. The current version has been tested on GNU/Linux Debian (6.x or later) and Gentoo (Stage 3) distributions. GSVE – Graphic Security Visualization Engine.Dnscap : DNS capture utility (tcpdump-like for DNS)ĭVM – DATA VISUALIZATION MODULE (TODO - Dev).Passivedns : Passive DNS data collection.Xplico : Application data extraction (url, files, …).Chaoreader : Application data extraction “any-snarf”.IDSE – Network Intrusion Detection Engine.prads : Network and service enumeration.NPEE – Network Profiling and Enumeraton Engine.NCPE – Network Traffic Pre-processing Engine.PNAF is written in Perl, why? because Perl rules! DCM – DATA COLLECTION MODULE Each module has its own engines which manage specific tools and process the data. Summary of the Security Level of the network.To provide a useful API in order to develop further features and improvements (not included on 0.1.2 prototype, but on next 0.2.x).To provide accurate analysis of network plattforms.To be a flexible, scalable and modular framework.The framework is intended to achieve the following goals: Architecture It combines different analysis techniques and tools. PNAF is a framework intended to provide the capability of getting a security assessment of network plattforms by analysing in-depth the network traffic (in a passive way) and by providing a high-level interpretation in an automated way. If you have any feedback/idea please drop an email (see contact information below). It will contain significant changes (dockerized, improved installation, parsing, daemon model, multi-threading support, etc). The next version of PNAF is 0.2.x and it is the current main dev project. You can either clone this repository and install it on your standalone machine, or download the Virtual Machine image available on Version 0.1.2 will get just minor updates (bugs/parsing) and it is the last version of 0.1.x branch. This public prototype DOES NOT include any internal information about TU/e nor Fox-IT.įrom Version 0.1.2, PNAF is a project of UNAM-Chapter PNAF v0.1 public prototype is an implementation of a TU/e master thesis developed as internship project at Fox-IT B.V in The Netherlands. Passive Network Audit Framework (PNAF) v0.1.2
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |