Logo
Netcap

Netcap

#Network & Cloud#Network Security

Normalize, index, enrich, and visualize network capture data using Potiron.

Visit Website

The Netcap (NETwork CAPture) Framework: A Streamlined Approach to Network Packet Conversion

The Netcap (NETwork CAPture) framework effectively transforms a stream of network packets into platform-neutral, type-safe structured audit records. These records accurately represent specific protocols or custom abstractions.

Storing and Utilizing Audit Records

These audit records can be saved on disk or transmitted over the network, making them an excellent data source for machine learning algorithms. However, parsing untrusted input can pose risks, and network data may be malicious. Therefore, a programming language that offers a garbage-collected, memory-safe runtime is used for the implementation.

It was developed for a series of experiments

This work was developed for a series of experiments conducted as part of a bachelor thesis focused on the implementation and evaluation of secure and scalable anomaly-based network intrusion detection. Additionally, slides from the presentation at the Leibniz Supercomputing Centre of the Bavarian Academy of Sciences and Humanities can be found on ResearchGate.

The project secured 2nd Place at Kaspersky Labs SecurIT Cup 2018

The project secured 2nd Place at the Kaspersky Labs SecurIT Cup 2018 held in Budapest. Netcap utilizes Google's Protocol Buffers to encode its output, enabling access across a diverse range of programming languages. Alternatively, the output can be generated as comma-separated values, which is a widely used input format for data analysis tools and systems.