Group 1 Argos

1
Group 1 - Argos

• Parser Code
• Input Files (Dumps)
• Frame Class Structure
• Frame Types
• Frame Allocation
• Schedule
• File/Object Structure (Parser Output)
• Pre-Parser (New Dumper)?
• GUI?

2
Parser Code Input Files (Dumps)

• TCP / IP

180332.517658 65.59.207.13.80 gt
64.198.214.195.3699 . 2671727(1460) ack 1 win
16985 (DF)
Ôò i ø?Ä 8 8
ÿÿÿÿÿÿ Ú Ú õC5 d ojc
ø?S 8 8 ÿÿÿÿÿÿ Ú ÚõëÑ6 d
ojc ø?Eã 8 8 ÿÿÿÿÿÿ
Ú Ú õb8 d ojc
3
Parser Code Frame Class Structure
4
Parser Code Frame Types

• Control Frame
• Network Protocol Instructions
• (Clear to Send, Ready to Send)
• Management Frame
• Network oversight
• Data Frame
• Actual data to be transferred

5
Parser Code Frame Allocation

• SuperFrame(String packet) throws ParseError
• // we read the string packet and determine what
  kind of frame this is. We call the
• // corresponding constructor for that frame
  and complete the rest of the parse at that
• // time. extract bits 2 and 3 from the packet
  string and convert to an integer// the string
  arguement is in base 2
• frameType Integer.parseInt(packet.substring(2,
  2), 2)switch (frameType) case 0 p new
  MgmtFrame(packet) this.serializePacket()
• break
• case 1 try p new
  CtrlFrame(packet) this.serializePacket()l
  break catch(ParseError p) exit 0
  case 2
• p new DataFrame(packet)
  this.serializePacket()
• breakdefault System.out.println("Fa
  tal error! Frame type is invalid.")
  ParseError retVal new ParseError(0,
  "FrameConstructor", packet) throw retVal

6
Schedule File/Object (Parser Output)

• Dynamic File Structure based on A.P. MAC address
• Packet filenames based on timestamp
• Packets are serialized Java objects
• Java object to be passed to GUI

7
Schedule Pre-Parser (New Dumper)

• Possible requirement if packet dumps given by
  TCPDump are not parsable.
• May need to create our own dumping tool.

8
Schedule - GUI

• Aaaaahhhh!

9
Argos - Summary

• Parser 90 done
• Protocol 99 done
• GUI gooey
• Miles to go before we sleep