Git Product home page Git Product logo

kraken's People

Contributors

blackluster1 avatar gotoweb avatar xeraph avatar yiming187 avatar zedahz avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

tgnice darkluster dangle0118 kamiratto xeraph yongkyun pkseop davecramer mvatkin kairuyan kpelykh missdiog grutz chenkaigithub onsdk opensoc data-sci cnbird1999 sleepy10 nickwallen sunfull0714 sjkbar keybridge lavatory hwdlei cccnam5158 jerry-zww mashushu drobsonaraujo allen3lichao ottobackwards niels-buhl barogi nickman dkstjs2 shudhanshu-quovantis setientltd avdes unnunique k25091986 khanhnc-kppk lepe janwerremeyer pan2za idevmc

kraken's Issues

Artifact "kraken-pcap-pom" missing in maven repository

The artifact "kraken-pcap-pom" that is referenced as a parent by kraken-pcap is missing in the main and the staging maven repository.

...
[ERROR] Failed to execute goal on project http.extractor: Could not resolve dependencies for project at.jku.fim:http.extractor:jar:0.0.1: Failed to collect dependencies for [org.krakenapps:kraken-pcap:jar:1.3.0 (compile), org.krakenapps:kraken-http-decoder:jar:1.1.0 (compile)]: Failed to read artifact descriptor for org.krakenapps:kraken-http-decoder:jar:1.1.0: Could not find artifact org.krakenapps:kraken-pcap-pom:pom:1.0.0 in krakenapps (http://staging.krakenapps.org/)
...

ArrayIndexOutOfBoundsException in MimeHeader, decodeHeader.

Attempting to parse a pcap file, containing SMTP traffic, that does not have standard the '0d 0a 0d 0a' delimiter and contains only '0d 0a'.
Also noticed that 'txBuffer.bytesBefore' on line 125 of SmptDecoder might not contain all the bytes before (1 packet less). The very first DATA packet containing the subject and content-type is not included in the 'txBuffer.bytesBefore' while the binary data of the attachment is.

Full stack trace is bellow:

 java.lang.ArrayIndexOutOfBoundsException: 2524

    at org.krakenapps.mime.MimeHeader.decodeHeader(MimeHeader.java:137)
    at org.krakenapps.pcap.decoder.smtp.SmtpDecoder.handleClientData(SmtpDecoder.java:137)
    at org.krakenapps.pcap.decoder.smtp.SmtpDecoder.handleTx(SmtpDecoder.java:110)
    at org.krakenapps.pcap.decoder.smtp.SmtpDecoder.handleTx(SmtpDecoder.java:68)
    at org.krakenapps.pcap.decoder.tcp.ApplicationLayerMapper.handlingL7(ApplicationLayerMapper.java:28)
    at org.krakenapps.pcap.decoder.tcp.ApplicationLayerMapper.sendToApplicationLayer(ApplicationLayerMapper.java:22)
    at org.krakenapps.pcap.decoder.tcp.TcpSessionImpl.pushToClientSack(TcpSessionImpl.java:196)
    at org.krakenapps.pcap.decoder.tcp.TcpSackReassembler.doReassemble(TcpSackReassembler.java:56)
    at org.krakenapps.pcap.decoder.tcp.TcpSackReassembler.reassemble(TcpSackReassembler.java:31)
    at org.krakenapps.pcap.decoder.tcp.TcpSackHandler.handle(TcpSackHandler.java:24)
    at org.krakenapps.pcap.decoder.tcp.TcpDecoder.handle(TcpDecoder.java:112)
    at org.krakenapps.pcap.decoder.tcp.TcpDecoder.process(TcpDecoder.java:58)
    at org.krakenapps.pcap.decoder.ip.IpDecoder.dispatchProtocol(IpDecoder.java:93)
    at org.krakenapps.pcap.decoder.ip.IpDecoder.dispatch(IpDecoder.java:81)
    at org.krakenapps.pcap.decoder.ip.IpDecoder.process(IpDecoder.java:69)
    at org.krakenapps.pcap.decoder.ethernet.EthernetDecoder.dispatch(EthernetDecoder.java:98)
    at org.krakenapps.pcap.decoder.ethernet.EthernetDecoder.decode(EthernetDecoder.java:76)
    at org.krakenapps.pcap.util.PcapFileRunner.run(PcapFileRunner.java:90)

The raw TCP stream of the packet, some information has been 'CUT OUT':

    220 <CUT OUT> INetSim Mail Service ready.
    EHLO server
    250-<CUT OUT>
    AUTH LOGIN
    250-SIZE 102400000
    YXJ0eW9tLnJlc2hldG55b3ZAbWFpbC5ydQ==250-STARTTLS

    250-DSN
    MTQwMjk5YXI=
    250-ENHANCEDSTATUSCODES
    MAIL FROM:<<CUT OUT email>>
    250-HELP
    RCPT TO:<<CUT OUT email>>
    DATA
    Subject: <CUT OUT subject>
    Content-Type: application/octet-stream; name="<CUT OUT file name>.bin"
    Content-Disposition: attachment; filename="<CUT OUT file name>.bin"
    Content-Transfer-Encoding: base64
    VUZSIRMAAAA<CUT OUT BINARY>EZAAAAAA==
    250-8BITMIME

    .
    250-AUTH PLAIN LOGIN ANONYMOUS CRAM-MD5 CRAM-SHA1
    QUIT
    250-ETRN
    250-EXPN

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.