Skip to content
This repository

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP

Netzob's repository on github

Fetching latest commit…

Cannot retrieve the latest commit at this time

README.txt
[*******************************************************************************]
[***********]                                                       [***********]
[***********]       Netzob : inferring communication protocols      [***********]
[***********]                                                       [***********]
[*******************************************************************************]


[*******************************************************************************]
[************************]       1. Presentation      [*************************]
[*******************************************************************************]

Netzob simplifies the work for security auditors by providing a
complete framework for the reverse engineering of communication
protocols.

It handles different types of protocols : text protocols (like HTTP
and IRC), fixed fields protocols (like IP and TCP) and variable fields
protocols (like ASN.1 based formats).  Netzob is therefore suitable
for reversing network protocols, structured files and system and
process flows (IPC and communication with drivers). Netzob is provided
with modules dedicated to capture data in multiple contexts (network,
file, process and kernel data acquisition).


[*******************************************************************************]
[************************]       2. Installation      [*************************]
[*******************************************************************************]

Netzob currently supports Linux x86 and x64 platforms.

Dependencies :

* tcpdump
* python
* python-ptrace
* nfqueue-bindings-python
* python-hachoir
* python-matplotlib
* python-dpkt
* python-pcapy
* strace
* lsof
* iptables
* python-bitarray
* python-pyasn1
* python-lxml
* python-dev
* libjs-sphinxdoc
* python-sphinx

or, on Debian-like operating systems :

$ sudo apt-get install tcpdump python python-ptrace nfqueue-bindings-python \
  python-hachoir-subfile python-matplotlib python-dpkt strace lsof iptables \
  python-pcapy python-bitarray python-pyasn1 python-dev python-lxml         \
  libjs-sphinxdoc python-sphinx

And then, 

$ python setup.py build


[*******************************************************************************]
[************************]           3. Usage         [*************************]
[*******************************************************************************]

Just run the following command to launch the graphical interface

$ ./netzob


[*******************************************************************************]
[************************]       4. Documentation     [*************************]
[*******************************************************************************]

Documentation generation :

The folder "doc/documentation" contains the documentation of Netzob in sphynx
format (.rst). Therefore, if you want to have updated HTMLs in the
"/doc/documentation/build/" directory based on the sources of the documentation
which is located in "/doc/documentation/source/" you'll have to execute the
following command :

$ sphinx-build -b html doc/documentation/source/ doc/documentation/build/


[*******************************************************************************]
[************************]       5. Miscellaneous     [*************************]
[*******************************************************************************]

** Requirements for Network and PCAP input **

Dependencies : tcpdump
Configuration : 

$ sudo setcap cap_net_raw=ep /usr/bin/python2.XX
$ sudo setcap cap_net_raw=ep /usr/sbin/tcpdump

** Requirements for IPC input on Ubuntu **

$ sudo bash -c "echo 0 > /proc/sys/kernel/yama/ptrace_scope"


[*******************************************************************************]
[************************]          6. Contact        [*************************]
[*******************************************************************************]

* Website : http://www.netzob.org
* Email : contact@netzob.org
* Mailing lists : https://lists.netzob.org/wws/
* Developer's room : https://dev.netzob.org
* IRC : #netzob on Freenode

Authors:
* Georges Bossert
* Frédéric Guihéry

Sponsors:
* Amossys : http://www.amossys.fr
* Supélec : http://www.rennes.supelec.fr/ren/rd/cidre/
Something went wrong with that request. Please try again.