恶意通信检测开源工具-TinyCheck
source link: http://osp.io/archives/6806
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
TinyCheck是卡巴斯基实验室开源的恶意通信检测工具。遵守Apache开源协议。TinyCheck可用于检测与分析智能手机或 WiFi 关联设备的网络通信,集成了移动追踪器和跟踪软件的感染迹象列表,以便快速识别出恶意请求的来源,帮助解决跟踪软件问题,提高用户的安全隐私控制能力。
TinyCheck 能够扫描移动设备向外发出的流量,并识别与已知恶意来源的交互。推荐在Raspberry Pi 上使用 TinyCheck:使用一个Wi-Fi接口和一个用于互联网的以太网连接(或者两个Wi-Fi接口,一个用于连接互联网,一个用于移动设备的AP模式连接 )。
https://github.com/KasperskyLab/TinyCheck
TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere.
1,792118 Download ZIPRecommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK