This Library:
Essentially, this library has been implemented to be a part of Cuckoo Sandbox
the automated malware analysis tool. This library is depend on Scapy library.
The Supported protocols:
1- this library can parse (dissect) these protocols:
TCP, UDP, ICMP, DNS, HTTP, FTP, IRC, SMB, SIP, TELNET, SMTP, SSH, IMAP and POP.
2- this library is aware of TCP reassembly.
3- this library is capable of recovering the downloaded files through HTTP, FTP and SMTP.
for any further questions or information please contact me.
[email protected]
Abdulellah Alsaheel