Skip to content
/ Protocol_Restoration Public

tcp流的乱序重组、提取TLS1.2流量中的SNI以及证书

License

Apache-2.0 license
10 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

CChuancey/Protocol_Restoration

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
.vscode
.vscode
 
 
doc
doc
 
 
src
src
 
 
third_party/openssl
third_party/openssl
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
FindPCAP.cmake
FindPCAP.cmake
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Protocol_Restoration

本项目使用libpcap读pcap报文,然后进行tcp流的乱序重组、与tls1.2中的握手报文解析,利用前缀树可以根据四元组、SNI、证书部分进行流过滤。

  • 不考虑ip分片的情况(没有进行ip的分片重组)
  • TCP部分完成乱序重组以及数据包的缓冲
  • TLS部分只考虑了TLS1.2的情况

使用

  1. clone本项目至Linux平台(Centos或者Ubuntu)
  2. 安装所需依赖libpcapcmakeopenssl 1.1.1s
  3. 编译:
  cmake -S . -B build 
  cmake --build build

说明

third_party/openssl中两个头文件取自openssl1.1.1s源代码。

About

tcp流的乱序重组、提取TLS1.2流量中的SNI以及证书

Topics

tls cmake cpp tcp-ip tls-certificate

Resources

Readme

License

Apache-2.0 license
Activity

Stars

10 stars

Watchers

1 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages