Contributor
Hariom Chaturvedi
View Code

PcapMonkey Improvements

Mentors
Pietro Delsante, Federico Foschini
Organization
The Honeynet Project

PcapMonkey provides an easy way to analyze .pcap using Suricata, Zeek, and Elastic SIEM. The goal of this proposal is to improve and enhance PcapMonkey to help analysts work faster. A broad list of work to be done in the project during the summer is:

  • Improve Suricara, Zeek, and .evtx integrations.
  • Follow standard Elastic Common Schema.
  • Implement a test architecture for PcapMonkey.
  • Addition of multiple functionalities like live traffic analysis and Zeek Package Manager integration to take PcapMonkey further.