Release of Capture-HPC 2.0
Thursday, September 13. 2007
Christian Seifert just mailed me and told me about the new release of Capture-HPC. Lots of new features are included in the release, which, hopefully, lowers the bar to get into research about malicious servers as well as expand the possibilities of the research... Here a (partial) list of specific new features:
The tool and the source code are available from https://www.client-honeynet.org/creleases.html.
- support for any client application that is http protocol aware (for example, Microsoft Excel)
- ability to automatically collect malware
- ability to automatically collect network traffic on the client
- ability to push exclusion lists from the Capture Server to the Capture Client
- improved control of Internet Explorer: obtain HTML error codes; specify visitation delay after page has been retrieved; retry visitation of URLs in case of time outs or network errors, ...
- support for plug-in architecture, that allows to create fine grained control of clients (for example, as provided for Internet Explorer), but also allows for integration of client applications that require complex interactions to retrieve content from the web ( e.g. Safari is such an application. It doesn't allow retrieval of web content by passing the URL as a parameter)
The tool and the source code are available from https://www.client-honeynet.org/creleases.html.
".
