Giters

martykan / malwarewall

A virtual network firewall for malware analysis. Written in Rust for my Bachelor's thesis

Home Page:https://www.vut.cz/en/students/final-thesis/detail/147133

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

MalwareWall

A virtual network firewall to filter traffic from unsafe sources.

To start the network:

sudo ./m.sh start

To run a Docker container connected to the network:

sudo ./m.sh docker <image name>

To run a QEMU VM connected to the network:

sudo ./m.sh qemu <disk image path>

To monitor traffic using tcpdump:

sudo ./m.sh monitor

To capture traffic using tcpdump:

sudo ./m.sh capture

Installation

Ubuntu 20.04 is the main development platform and the only platform tested, however, the project should work on any Linux distribution.

The project is written in Rust, so the Rust toolchain needs to be installed.

curl https://sh.rustup.rs -sSf | sh

Docker is also necessary to run honeypots.

sudo apt install docker.io

Optional dependencies:

  • To inspect HTTPS traffic, you will need to install mitmproxy from their website and add it to PATH.

About

A virtual network firewall for malware analysis. Written in Rust for my Bachelor's thesis

https://www.vut.cz/en/students/final-thesis/detail/147133

License:MIT License

Languages

Language:Rust 89.5%Language:Python 5.4%Language:Shell 5.1%