How do you send network data via networked instance?

Question

How do you send network data via networked instance?

Opened this issue 9 years ago · 6 comments

Do you use it as a proxy and send the data via http proxy over certain port? I don't really get how to use it as networked instance. (And would love to try it out.)
Thanks.

Answer 1 · 2015-10-06T21:07:45.000Z

@kurtcoke cloudscan.py provides an example implementation for how to use the client library that is included in the framework.

We plan to release a couple of additional clients (besides cloudscan) in the near future including a milter server that can be integrated with a mail relay, and an ICAP server that can be integrated with a proxy server. These will obviously make laikaboss more immediately useful. If you write a laikaboss client for any other system (like a passive NIDS) please feel free to share it back.

Answer 2 · 2015-10-07T06:48:17.000Z

Cool I don't really get how to use it yet. Where can I get the docs from the blackhat workshop on Laikaboss? Thanks.

Answer 3 · 2015-10-25T23:33:37.000Z

@kurtcoke what is your email? I don't have write permission to this repo so I can't attach the pdf

Answer 4 · 2015-10-25T23:39:28.000Z

also, the slides don't really explain how to invoke it, so I can explain here!

open two different terminals of your laikaboss directory
use one to run "laikad.py". This is your server
Use cloudscan.py as your client, and then invoke it as you would invoke laika.py

Answer 5 · 2015-10-26T00:51:08.000Z

cfossace commented 9 years ago

Answer 6 · 2015-11-13T07:25:35.000Z

@cfossace I get that part I just dont get how you can run it as a proxy and have all your traffic pass through it? Does that make sense?