blob: 81b3c7d0c2f668ebba99e2f6ca8003e2efe8c0dd (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
|
# Midbro – Packet Capturing for Intrusion Detection Systems
Created by Robert Gustafsson, Robin Krahl and Andreas Lindhé in DAT300 2017 at
Chalmers University of Technology. Copyright belongs to the authors.
## Dependencies
These dependencies are packaged in the Debian repositories, but are also
available on other platforms.
* Bro (`bro`)
* Broccoli (`libbroccoli-dev`)
* Tcpreplay (`tcpreplay`)
## Workflow
0. Compile and export library path
1. Start Bro
2. Start the consumer (midbro_test)
3. Send network traffic
## Example usage:
The commands below assume you are in the root directory of this repository.
### 0. Compile & export path
`make && make midbro_test`
`export export LD_LIBRARY_PATH=$(pwd)/lib`
### 1. Start Bro
`sudo bro -b -C -i lo script/modbus.bro Log::default_writer=Log::WRITER_NONE`
### 2. Start the consumer (`midbro_test`)
`./bin/midbro_test`
### 3. Send network traffic
`sudo tcpreplay -i lo -M 100.0 livedata.cap`
|
