About: Dshell

Facets (new session)
Description
Metadata
Settings
- Rule:
- Inverse Functional Properties:
- "Same As":

About: Dshell Goto Sponge NotDistinct Permalink

An Entity of Type : owl:Thing, within Data Space : dbpedia.org associated with source document(s)
QRcode icon

http://dbpedia.org/describe/?url=http%3A%2F%2Fdbpedia.org%2Fresource%2FDshell

Dshell is an open source, Python-based, forensic analysis framework developed by the U.S. Army Research Laboratory, MD. This tool provides users with the ability to develop custom analysis modules which helps them understand events of cyber intrusion. This framework handles stream reassembly of both IPv4 and IPv6 network traffic and also includes geolocation and IP-to-ASN mapping for each connection. Additionally, the framework plug-ins are designed to aid in the understanding of network traffic and present results to the user in a concise, useful manner. Since Dshell is written entirely in Python, the code base can be customized to particular problems by modifying an existing decoder to extract different information from existing protocols.

Attributes	Values
rdfs:label	Dshell (en)
rdfs:comment	Dshell is an open source, Python-based, forensic analysis framework developed by the U.S. Army Research Laboratory, MD. This tool provides users with the ability to develop custom analysis modules which helps them understand events of cyber intrusion. This framework handles stream reassembly of both IPv4 and IPv6 network traffic and also includes geolocation and IP-to-ASN mapping for each connection. Additionally, the framework plug-ins are designed to aid in the understanding of network traffic and present results to the user in a concise, useful manner. Since Dshell is written entirely in Python, the code base can be customized to particular problems by modifying an existing decoder to extract different information from existing protocols. (en)
dcterms:subject	Computer security software United States Army equipment
Wikipage page ID	57877600 (xsd:integer)
Wikipage revision ID	963527331 (xsd:integer)
Link from a Wikipage to another Wikipage	Python (programming language) United States Army Research Laboratory GitHub NASA Geolocation Air Force Research Laboratory Computer security software United States Army equipment IPv4 IPv6 National Security Agency National Guard of the United States
sameAs	Dshell Dshell Dshell
dbp:wikiPageUsesTemplate	dbt:Orphan
has abstract	Dshell is an open source, Python-based, forensic analysis framework developed by the U.S. Army Research Laboratory, MD. This tool provides users with the ability to develop custom analysis modules which helps them understand events of cyber intrusion. This framework handles stream reassembly of both IPv4 and IPv6 network traffic and also includes geolocation and IP-to-ASN mapping for each connection. Additionally, the framework plug-ins are designed to aid in the understanding of network traffic and present results to the user in a concise, useful manner. Since Dshell is written entirely in Python, the code base can be customized to particular problems by modifying an existing decoder to extract different information from existing protocols. The U.S. Army Research Laboratory (ARL) released a version of Dshell to GitHub social coding website on December 17, 2014, with more than 100 downloads and 2,000 unique visitors in 18 countries. Before it was publicly released, Dshell had a small, select community of users in several government organizations. Users could use the tool to find the exact information they needed from network data including looking up names, reassembled website requests or decoded malware traffic. ARL chose to release Dshell to GitHub because sharing it with the world created more security teams gaining another specialized tool to keep their networks secure. Furthermore, increasing the security of the Internet as a whole by increasing the number of skilled eyes looking for bugs and potential improvements throughout the code. In 2014, NASA released more than 1,000 of Dshell. Other agencies, such as the National Security Agency, the National Guard and the Air Force Research Laboratory joined shortly after the following year. GitHub was chosen for Dshell because it allows members to easily download software code, store edits, and provide a mechanism to offer feedback to the original designer. Additionally, rolling enhancements into the official version make it easier to share the software across organizations, bypassing constant emailing or sending CDs. As of June 2016, users have created more than 11,000 copies of the tool and have offered approximately 62 suggested modifications to the original software. There are additional modules within the Dshell framework that can be accessed to increase network security; however, the ability to rapidly develop and share analytical modules is the core strength of the framework. (en)
prov:wasDerivedFrom	wikipedia-en:Dshell?oldid=963527331&ns=0
page length (characters) of wiki page	3581 (xsd:nonNegativeInteger)
foaf:isPrimaryTopicOf	wikipedia-en:Dshell
is Link from a Wikipage to another Wikipage of	Dshell Framework
is Wikipage redirect of	Dshell Framework
is foaf:primaryTopic of	wikipedia-en:Dshell

Faceted Search & Find service v1.17_git139 as of Feb 29 2024

Alternative Linked Data Documents: ODE Content Formats:

RDF

ODATA

Microdata

About

OpenLink Virtuoso version 08.03.3330 as of Mar 19 2024, on Linux (x86_64-generic-linux-glibc212), Single-Server Edition (61 GB total memory, 51 GB memory in use)
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2024 OpenLink Software