General IRC protocol implementation

mushorg / buttinsky

Botnet monitoring is a crucial part in threat analysis and often neglected due to the lack of proper open source tools. Our tool will provide an open source framework for automated botnet monitoring. The modular design will allow full customization of the used protocols, the monitoring clients behavior, how we log the collected information, processing of the data to analyze the botnets purpose, size and threat and how the monitoring task are distributed between dedicated nodes.

http://buttinsky.org

GNU General Public License v3.0

79 stars 27 forks source link

General IRC protocol implementation #7

Closed glaslos closed 11 years ago

glaslos commented 11 years ago

The IRC protocol is no rocket science so I'd write it from scratch and get more flexibility this way. I added a basic starting point to the repository handling NICK, USER, JOIN and PING. It would be cool if we could configure the communication protocols by providing protocol definitions in the botnet settings.

adepasquale commented 11 years ago

What do you mean by "protocol definitions"? Extending the available options and settings, or defining a rule based behavior e.g. "on PRIVMSG do PRIVMSG $args" and so on?

glaslos commented 11 years ago

This is just for the protocol. So in the case of IRC the "protocol_plugin": "irc" in the settings file. As the basic IRC protocol implementation is finished, I'm closing this issue.