netsec
Network Security and Monitoring
Netsec is a network security related tooling project that I am working to learn more about network security and monitoring. The project is currently utilizing the Scapy library to create a packet sniffer and monitor network traffic. The goal is to build a tool that can analyze network packets, detect anomalies, and provide insights into network behavior.
Current Features:
- Packet Sniffer: Capture and analyze network packets in real-time.
- Protocol Analysis: Decode and analyze various network protocols.
Date: 5/10/25
I had the basic packet sniffer working using scapy and was able to capture TCP packets on the network for my traffic. I am now working on adding protocol analysis features to decode and analyze various network protocols. Given HTTP and TLS utilize TCP, I sniff TCP packets and then decode to find out the HTTP and TLS packets. I currently have the HTTP and TLS decoding working like shown below:
I want to make it way more flexible with a lot of features and we are at the very start. I use the stony brook univerity graduate network course’s assignments as the guidelines for the project’s components at first.