Nemea Framework

This repository contains base libraries for a Nemea system. The Nemea system is a modular system that consists of independent modules for network traffic analysis and anomaly detection.

The framework consists of:

libtrap -- communication interface for messages transfer between Nemea modules
UniRec -- flexible and efficient data format of flow-records
common -- usefull common functions and data structures
python -- python wrapper for libtrap and UniRec that allows development of nemea modules in python
pycommon -- python common modules and methods, there is currently a support of alerts creation in the IDEA format that can be stored into MongoDB or sent to the Warden incident sharing system

Installation

This repository is usually used as a git submodule of https://github.com/CESNET/Nemea However, it can be installed independently using:

./bootstrap.sh
./configure
make
sudo make install

For information about configuration options see:

./configure --help

Python parts must be installed separately when needed. It can be done using:

cd pytrap; sudo python setup.py install

and

cd pycommon; sudo python setup.py install

Project status:

License:

Travis CI build:

Coverity Scan:

CodeCov:

Ohloh:

About

Nemea framework is the heart of the Nemea system. It contains implementation of common communication interfaces, UniRec data format and useful datastructures and algorithms.

Languages

Language:HTML 75.8%Language:C 14.1%Language:TeX 2.4%Language:JavaScript 1.4%Language:M4 1.3%Language:CSS 1.2%Language:C++ 1.2%Language:Python 1.2%Language:Shell 0.8%Language:Objective-C 0.4%Language:Makefile 0.2%