network sniffer is now ready to use #version=0.1.3

Author: abzcoding

.gitignore

@@ -49,3 +49,4 @@ nosetests.xml
 # Pypy
 .pypirc
 .ropeproject
+.cache

CHANGELOG.md

@@ -1,11 +1,18 @@
 # APTDetector Changelog
 
-Since February 7, 2016 there have been 0 releases and 2 commits for
+Since February 7, 2016 there have been 0 releases and 8 commits for
 
 an average of zero 0-commit release every 0 weeks.
 
+## 0.1.3
+
+* [BaseSniffer][basesniffer] is now finished and capable of parsing a [Pcap][Pcap] file
+* fixed doctests to pass travis ci
+
 ## 0.1.2
 
+*(February 11, 2016)*
+
 * started documentating
 * fixed versioning problem
 
@@ -35,4 +42,4 @@ Project Started.
 [CapTipper]: http://captipper.readthedocs.org/en/latest/
 [pcap-parser]: https://github.com/caoqianli/pcap-parser
 [URLSniffer]: https://github.com/abzcoding/aptdetector/blob/master/aptdetector/network/sniffer.py
-[Pcap]: https://en.wikipedia.org/wiki/Pcap
+[Pcap]: https://en.wikipedia.org/wiki/Pcap

README.md

@@ -6,16 +6,13 @@
 *Advanced Persistent Threat Detection by Using Network Analysis*
 
 **aptdetector** is a humble try to gather all means of malware detection
-
 from network analysis in one place, for educational purposes only.
 
 * used [pcap-parser][pcap-parser] as the base for network analysis module
 * use [Cuckoo Sandbox][Cuckoo] as automated malware detection
 
-aptdetector is tested against Python 3.4, 3.5, and
-
-PyPy. [Full and extensive docs would be available at Read The Docs.][rtd]
-
+aptdetector is tested against Python 3.4, 3.5, and PyPy.
+[Full and extensive docs would be available at Read The Docs.][rtd]
 See what's new by checking the [CHANGELOG][changelog].
 
 [rtd]: https://aptdetector.readthedocs.org/en/latest/
@@ -41,7 +38,6 @@ Then, [thanks to PyPI][aptdetector_pypi], aptdetector is just an import away:
 ```
 
 However, due to the nature of utilities, application developers might
-
 dependencies. See the [Integration][integration] section of the docs
 
 [aptdetector_pypi]: https://pypi.python.org/pypi/aptdetector
@@ -50,15 +46,12 @@ dependencies. See the [Integration][integration] section of the docs
 ## Disclaimer
 
 Please do not use this program in production!!
-
 it's an educational project only.
 
 
-
 ## References
 
 I've based my work loosely on some respectful papers
-
 that i've linked below:
 
 * [Packet sniffing a brief introduction][packetsniff]
@@ -80,11 +73,8 @@ that i've linked below:
 ## Gaps
 
 Found something missing in the in `aptdetector`? something is broken in `aptdetector`?
-
 If you are very motivated, submit [a Pull Request][prs]. Otherwise,
-
 submit a short feature request on [the Issues page][issues], and we will
-
 figure something out.
 
 [architecture]: https://aptdetector.readthedocs.org/en/latest/architecture.html

aptdetector/network/packet.py

@@ -0,0 +1,95 @@
+"""sample"""
+import socket
+
+from aptdetector.utils.typecheck import params, returns
+
+
+class TcpPacket(object):
+    """mimic a TcpPacket as we need it"""
+
+    def __init__(self):
+        """initialize a :class:`TcpPacket`"""
+        # splited = str(value).split('-')
+        self.__sourceHost = None
+        self.__sourcePort = None
+        self.__destinationHost = None
+        self.__destinationPort = None
+        self.__url = None
+
+    def __str__(self):
+        """string representation of :class:TcpPacket object"""
+        res = str(self.sourceHost + ":" + str(self.sourcePort) + " ---> " +
+                  self.destinationHost + ":" + str(
+                      self.destinationPort) + "\n" + self.request)
+        return res
+
+    @returns(bool)
+    def valid_ip(self, addr):
+        """check for valid ip"""
+        try:
+            socket.inet_aton(addr)
+            return True
+        except socket.error:
+            return False
+
+    @property
+    @returns(str)
+    def sourceHost(self):
+        """sample"""
+        return self.__sourceHost
+
+    @sourceHost.setter
+    @params(self=object, value=str)
+    def sourceHost(self, value):
+        """sample"""
+        if self.valid_ip(value):
+            self.__sourceHost = value
+
+    @property
+    @returns(int)
+    def sourcePort(self):
+        """sample"""
+        return self.__sourcePort
+
+    @sourcePort.setter
+    @params(self=object, value=int)
+    def sourcePort(self, value):
+        """sample"""
+        self.__sourcePort = value
+
+    @property
+    @returns(str)
+    def destinationHost(self):
+        """sample"""
+        return self.__destinationHost
+
+    @destinationHost.setter
+    @params(self=object, value=str)
+    def destinationHost(self, value):
+        """sample"""
+        if self.valid_ip(value):
+            self.__destinationHost = value
+
+    @property
+    @returns(int)
+    def destinationPort(self):
+        """sample"""
+        return self.__destinationPort
+
+    @destinationPort.setter
+    @params(self=object, value=int)
+    def destinationPort(self, value):
+        """sample"""
+        self.__destinationPort = value
+
+    @property
+    @returns(str)
+    def request(self):
+        """sample"""
+        return self.__url
+
+    @request.setter
+    @params(self=object, value=str)
+    def request(self, value):
+        """sample"""
+        self.__url = value