This project is about using snort inline as a gateway to detect download.
The gateway uses Ubuntu 16.04 with snort inline. In the LAN, include several victim pc (windows 7).
What need to be done:
The snort inline needs to detect and stop all sort of download.
Snort needs to dump the download into a pcap file.
The dump pcap file is found, the payload (pe or executable) is extracted.
Notification send to the victim about the downloaded file. Link is provided if the file is clean.
All programs need to be written in python.
20% will be paid as initial milestone.
This project is expect to complete by Tuesday evening or Wednesday morning.
Command for the snort with dump function
Python program for the detection of pcap and also the notification
This is for these who are able to meet these requirements. When bidding, please introduce yourself and your experience in python and snort.