Skip to content

Some network covert channel projects of my own research, containing a protocol channel tool (protocol switching covert channel, PCT/PSCC), a protocol hopping covert channel (PHCC) tool, the protocol channel-aware active warden (PCAW) and ... VSTT.

License

Notifications You must be signed in to change notification settings

cdpxe/NetworkCovertChannels

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

44 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Steffen Wendzel's Network Covert Channel Tools

This repository contains some of my covert channel projects and also refers to some other repositories where I host my additional covert channel projects.

If you need an introduction, check out my free open online class on network covert channels.

In this repository:

  • pct: Protocol Channel Tool (pct a PoC implementation to show that so-called protocol channels are feasible).
  • phcct: Protocol Hopping Covert Channel Tool (phcct was the first (2007) implementation of a protocol hopping covert channel).
  • vstt: Very Strange Tunneling Tool (this was my first network CC tool. I wrote vstt as a 2nd semester student. It can tunnel through ICMP, TCP, ...).
  • pcaw: Protocol Channel-aware Active Warden (pcaw is a countermeasure to reduce the channel successful transfer bitrate/capacity of protocol channels (and protocol hopping covert channels), I wrote this in 2012 as contribution to my PhD thesis).

My other covert channel projects on GitHub

  • NeFiAS: Network Forensic & Anomaly Detection System (tool for covert channel/network steganography detection).
  • CCEAP: Covert Channel Educational Analysis Protocol (a tool for teaching network covert channel patterns).
  • NELphase: Network Environment Learning Phase (a tool that implements a covert channel capable of performing an network environment learning (NEL) phase and that can be used to test active and passive wardens).

Tools of my students

Other Stego Tools