GitHub - christiecc8/incident_alarm: An alarm written in Python to sniff a pcap file or live interface for NULL, XMAS, FIN, SMB, and Nikto scans. Detects plaintext credentials sent over IMAP, FTP, and HTML protocols.

christiecc8 / incident_alarm Public

An alarm written in Python to sniff a pcap file or live interface for NULL, XMAS, FIN, SMB, and Nikto scans. Detects plaintext credentials sent over IMAP, FTP, and HTML protocols.

1 star 0 forks Branches Tags Activity

Star

Notifications

Branches Tags

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
README.txt		README.txt
alarm.py		alarm.py

Repository files navigation

README

Christie Cheong
alarm.py

------------------------------------------------------------------------

This program was written to analyse network packets or PCAP files for incidents such as scans or unencrypted credentials. I consulted Scapy documentation, our class Piazza, and stack overflow to write this code. Starter code was written by Ming Chow. This program was tested using given sample pcap files taken from various sources (including DEFCON) and sample pcaps from the Wireshark wiki.

Dependencies:
Scapy
Re
Base64
Argparse

About

An alarm written in Python to sniff a pcap file or live interface for NULL, XMAS, FIN, SMB, and Nikto scans. Detects plaintext credentials sent over IMAP, FTP, and HTML protocols.

python alarm sniffer cybersecurity

Readme

Activity

1 star

1 watching

0 forks

Report repository