Trust@HsH
Github account of the Trust@HsH research group at the Hochschule Hannover.
Hannover, Germany
Pinned Repositories
freeradius-server
The FreeRADIUS Server
ifmapcli
ifmapcli is a set of *experimental* IF-MAP Command Line Interface tools for Java. ifmapcli supports IF-MAP 2.0. Development was done by Hochschule Hannover (Hannover University of Applied Sciences and Arts) within the ESUKOM research project.
irond
irond is an an *experimental* IF-MAP 2.0 compliant MAP server written in JAVA. irond supports both basic authentication and certificate-based authentication (using X.509 certificates) of MAP clients. irond is maintained by the Trust@HsH group at the Hochschule Hannover, initial developement was carried out during the ESUKOM research project.
irondemo
irondemo is a set of shell and Perl scripts as well as some resources, to build a environment containing our IF-MAP based software from scratch. Development was done by Hochschule Hannover (Hannover University of Applied Sciences and Arts) .
irongui
irongui, implemented by the Trust@FHH research group at the Hochschule Hannover, is a program to visualize the content of a MAP Server (MAPS). The development was started within the bachelor thesis of Tobias Ruhe at Hochschule Hannover (University of Applied Sciences and Arts Hannover). irongui is now maintained and extended within the ESUKOM research project. More information can be found at the Trust@HsH website.
ironvas
ironvas is a *highly experimental* integration of Open Vulnerability Assessment System (OpenVAS) into a MAP-Infrastructure.
tnc-fhh
tnc@fhh is an open source Trusted Network Connect implementation by the Trust@HsH research group at the Hochschule Hannover.
trustathsh-xacml-pdp
The Trust@HsH XACML PDP is a XACML Policy Decision Point that receives incoming XACML requests, evaluates them and sends them back as XACML responses. It is based on Sun's XACML implementation. This software was developed within the tNAC research project (support code 1704B08) which is funded by the german BMBF (Federal Ministry of Education and Research).
visitmeta
VisITMeta is an *experimental* IF-MAP 2.2 compliant MAP client written in Java that visualizes metadata stored on a MAP server. It supports features like showing a history of all metadata stored on a MAPS, using filter and search techniques to navigate the metadata as well as some visualization techniques like animations, highlighting and so on. Development was done by Hochschule Hannover (University of Applied Sciences and Arts, Hanover) within the VisITMeta research project, (support code 17PNT032) which is funded by the german BMBF (Federal Ministry of Education and Research).
visitmeta-device-leapmotion
A module that adds support for the LeapMotion device to the VisITMeta GUI (version >= 0.0.7).
Trust@HsH's Repositories
trustathsh/tnc-fhh
tnc@fhh is an open source Trusted Network Connect implementation by the Trust@HsH research group at the Hochschule Hannover.
trustathsh/irond
irond is an an *experimental* IF-MAP 2.0 compliant MAP server written in JAVA. irond supports both basic authentication and certificate-based authentication (using X.509 certificates) of MAP clients. irond is maintained by the Trust@HsH group at the Hochschule Hannover, initial developement was carried out during the ESUKOM research project.
trustathsh/irondemo
irondemo is a set of shell and Perl scripts as well as some resources, to build a environment containing our IF-MAP based software from scratch. Development was done by Hochschule Hannover (Hannover University of Applied Sciences and Arts) .
trustathsh/ironvas
ironvas is a *highly experimental* integration of Open Vulnerability Assessment System (OpenVAS) into a MAP-Infrastructure.
trustathsh/trustathsh-xacml-pdp
The Trust@HsH XACML PDP is a XACML Policy Decision Point that receives incoming XACML requests, evaluates them and sends them back as XACML responses. It is based on Sun's XACML implementation. This software was developed within the tNAC research project (support code 1704B08) which is funded by the german BMBF (Federal Ministry of Education and Research).
trustathsh/visitmeta
VisITMeta is an *experimental* IF-MAP 2.2 compliant MAP client written in Java that visualizes metadata stored on a MAP server. It supports features like showing a history of all metadata stored on a MAPS, using filter and search techniques to navigate the metadata as well as some visualization techniques like animations, highlighting and so on. Development was done by Hochschule Hannover (University of Applied Sciences and Arts, Hanover) within the VisITMeta research project, (support code 17PNT032) which is funded by the german BMBF (Federal Ministry of Education and Research).
trustathsh/freeradius-server
The FreeRADIUS Server
trustathsh/irongui
irongui, implemented by the Trust@FHH research group at the Hochschule Hannover, is a program to visualize the content of a MAP Server (MAPS). The development was started within the bachelor thesis of Tobias Ruhe at Hochschule Hannover (University of Applied Sciences and Arts Hannover). irongui is now maintained and extended within the ESUKOM research project. More information can be found at the Trust@HsH website.
trustathsh/visitmeta-device-leapmotion
A module that adds support for the LeapMotion device to the VisITMeta GUI (version >= 0.0.7).
trustathsh/ifmapcli
ifmapcli is a set of *experimental* IF-MAP Command Line Interface tools for Java. ifmapcli supports IF-MAP 2.0. Development was done by Hochschule Hannover (Hannover University of Applied Sciences and Arts) within the ESUKOM research project.
trustathsh/ifmapj
ifmapj is a lightweight, platform-independent, easy-to-use IF-MAP client library for Java. IF-MAP is an XML based protocol for sharing data across arbitrary components, specified by the Trusted Computing Group. ifmapj is maintained by the Trust@HsH group at the Hochschule Hannover. ifmapj was developed within the ESUKOM research project.
trustathsh/irongpm
irongraph is an experimental graph pattern matching (GPM) engine. It can be used to define and search for patterns within an IF-MAP Graph. As a result, different actions can be performed, e.g. generating new information or trigger other systems. irongraph was developed within the SIMU research project.
trustathsh/ids-evaluation-IEEE-big-data
Evaluation code used during the creation of the paper titled 'On the Evaluation and Deployment of Machine Learning Approaches for Intrusion Detection'.
trustathsh/irondetect
irondetect is a correlation engine. Based on contexts, signatures and anomalies, it detects deviations from normal behavior. It presents correlations between IF-MAP metadata of different devices. By the definition of rules in a policy by a security expert, the correlated results can be used to analyze a network. If you need help for setting up, please contact the Trust@HsH team. Development was done by Hochschule Hannover (Hannover University of Applied Sciences and Arts) within the ESUKOM research project.
trustathsh/irondhcp
irondhcp is an *experimental* IF-MAP client which can be used in combination with the ISC DHCP server to publish ip-mac metadata on links between ip-address and mac-address identifiers. It does not represent a standalone DHCP server. The program was written using Java. For communication purposes ifmapj is used. Communication between the MAP client and MAP server is done using IF-MAP 2.0. Development was started within the IRON project at Hochschule Hannover (Hannover University of Applied Sciences and Arts). The implementation was maintained and extended within the ESUKOM research project. More information about the projects can be found at the Trust@HsH research group website.
trustathsh/ironflow
ironflow is a IF-MAP client to map the offered data from an Openflow controller into the MAP-Infrastructure. In addition ironflow offers the possibility to react on request for Investigation requests with the blocking of network traffic for the hosts quoted in the request. Development was done by Hochschule Hannover (Hannover University of Applied Sciences and Arts) .
trustathsh/irongenlog
irongenlog is a integration of diverse logfile systems into a MAP-Infrastructure. The integration aims to share security related informations, given by many logfile systems with other network components in the TNC architecture via IF-MAP.
trustathsh/ifmapj-examples
This package contains simple examples that demonstrate how to use the ifmapj IF-MAP 2.0 library. Development was done by Hochschule Hannover (Hannover University of Applied Sciences and Arts) within the ESUKOM research project.
trustathsh/ironcommon
A library of helper methods and "stuff" like code convention files used by (all) iron* software.
trustathsh/ironcontrol-for-android
ironcontrol is an IF-MAP client on a Android Smartphone device. It designed as a tool for administrative tasks in an IF-MAP environment. It allows the user to send requests such as publish, search and subscriptions to a MAP server and save these requests and also merge several requests into one via certain operations.
trustathsh/irondetect-procedures
A collection of procedures for irondetect
trustathsh/ironevents
ironevents includes the event pojos for other iron projects like ironvas_EventsToAMQP. In the case you want easily use a iron project that emits events, you can import this project as dependency to process the events in your own code.
trustathsh/ironloggui
This highly experimental project is a GUI for collecting log output in one single GUI. Its primarily designed to work with irondemo, but you can use it to display all logs you want.
trustathsh/ironnmap
ironnmap integrates the informations provided by nmap scans into a MAP-Infrastructure. The integration aims to share security related informations, given by nmap with other network components in the TNC architecture via IF-MAP.
trustathsh/ironsyslog
ironsyslog is a highly experimental integration of diverse Log-Messages Systems into a MAP-Infrastructure. The integration aims to share security related informations, given by many systems, with other network components in the TNC architecture via IF-MAP. ironsyslog was developed within the SIMU research project.
trustathsh/irontemplate
A template project for ifmapj-based clients.
trustathsh/ironvas_EventsToAMQP
ironvas_EventsToAMQP is a *highly experimental* integration of Open Vulnerability Assessment System (OpenVAS) into a MAP-Infrastructure. But in comparison to stock ironvas this project sents events to an AMQP queue instead of sending them to IFMAP.
trustathsh/ironworker
An IF-MAP 2.2 based tool that runs a configurable subscription on a MAP server and reacts to incoming results in a customizable manner.
trustathsh/metalyzer
Metalyzer is a extension to the IF-MAP visualization suite VisITMeta. It extends the VisITMeta dataservice to perform statistical methods and semantic(-like) queries on MAP graphs and visualize the results within a GUI. With the use of VisITMeta’s history of MAP data, time-variant analysis can be done. The software was developed during a tudents project at Hochschule Hannover Hannover University of Applied Sciences and Arts).