d4-core/README.md

# D4 core

![](https://www.d4-project.org/assets/images/logo.png)

D4 core are software components used in the D4 project. The software includes everything to create your own sensor network or connect
to an existing sensor network using simple clients.

![https://github.com/D4-project/d4-core/releases/latest](https://img.shields.io/github/release/D4-project/d4-core/all.svg)
![https://github.com/D4-project/d4-core/blob/master/LICENSE](https://img.shields.io/badge/License-AGPL-yellow.svg)

## D4 core client

[D4 core client](https://github.com/D4-project/d4-core/tree/master/client) is a simple and minimal implementation of the [D4 encapsulation protocol](https://github.com/D4-project/architecture/tree/master/format). There is also a [portable D4 client](https://github.com/D4-project/d4-goclient) in Go including the support for the SSL/TLS connectivity.

<p align="center">
<img alt="d4-cclient" src="https://raw.githubusercontent.com/D4-project/d4-core/master/client/media/d4c-client.png" height="140" />
</p>

### Requirements

- Unix-like operating system
- make
- a recent C compiler

### Usage

The D4 client can be used to stream any byte stream towards a D4 server.

As an example, you directly stream tcpdump output to a D4 server with the following
script:

````
tcpdump -n -s0 -w - | ./d4 -c ./conf | socat - OPENSSL-CONNECT:$D4-SERVER-IP-ADDRESS:$PORT,verify=0
````

~~~~
d4 - d4 client
Read data from the configured <source> and send it to <destination>

Usage: d4 -c  config_directory

Configuration

The configuration settings are stored in files in the configuration directory
specified with the -c command line switch.

Files in the configuration directory

key         - is the private HMAC-SHA-256-128 key.
              The HMAC is computed on the header with a HMAC value set to 0
              which is updated later.
snaplen     - the length of bytes that is read from the <source>
version     - the version of the d4 client
type        - the type of data that is send. pcap, netflow, ...
source      - the source where the data is read from
destination - the destination where the data is written to
~~~~

### Installation

~~~~
cd client
git submodule init
git submodule update
~~~~

## D4 core server

D4 core server is a complete server to handle clients (sensors) including the decapsulation of the [D4 protocol](https://github.com/D4-project/architecture/tree/master/format), control of
sensor registrations, management of decoding protocols and dispatching to adequate decoders/analysers.

### Requirements

- Python 3.6
- GNU/Linux distribution

### Installation


- [Install D4 Server](https://github.com/D4-project/d4-core/tree/master/server)

### Screenshots of D4 core server management

![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/main.png)
![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/sensor-mgmt.png)
![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/server-mgmt.png)
![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/analyzer-mgmt.png)
![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/server-mgmt2.png)
add: [doc] first version of the README 2018-12-05 10:37:20 +01:00			`# D4 core`

chg: [doc] logo added 2019-01-25 11:51:41 +01:00			`![](https://www.d4-project.org/assets/images/logo.png)`

chg: [doc] Add more explanation of d4-core 2019-01-24 21:06:26 +01:00			`D4 core are software components used in the D4 project. The software includes everything to create your own sensor network or connect`
			`to an existing sensor network using simple clients.`
add: [doc] first version of the README 2018-12-05 10:37:20 +01:00
chg: [DOC] badges updated 2019-02-14 16:27:06 +01:00			`![https://github.com/D4-project/d4-core/releases/latest](https://img.shields.io/github/release/D4-project/d4-core/all.svg)`
			`![https://github.com/D4-project/d4-core/blob/master/LICENSE](https://img.shields.io/badge/License-AGPL-yellow.svg)`

add: [doc] first version of the README 2018-12-05 10:37:20 +01:00			`## D4 core client`

chg: [doc] a sample usage of the D4 core client 2019-01-24 21:42:46 +01:00			`[D4 core client](https://github.com/D4-project/d4-core/tree/master/client) is a simple and minimal implementation of the [D4 encapsulation protocol](https://github.com/D4-project/architecture/tree/master/format). There is also a [portable D4 client](https://github.com/D4-project/d4-goclient) in Go including the support for the SSL/TLS connectivity.`
chg: [doc] Add more explanation of d4-core 2019-01-24 21:06:26 +01:00
chg: [README] add client logo 2019-07-11 14:40:40 +02:00			`<p align="center">`
			`<img alt="d4-cclient" src="https://raw.githubusercontent.com/D4-project/d4-core/master/client/media/d4c-client.png" height="140" />`
			`</p>`

chg: [doc] Add more explanation of d4-core 2019-01-24 21:06:26 +01:00			`### Requirements`

			`- Unix-like operating system`
			`- make`
			`- a recent C compiler`

chg: [doc] a sample usage of the D4 core client 2019-01-24 21:42:46 +01:00			`### Usage`

			`The D4 client can be used to stream any byte stream towards a D4 server.`

			`As an example, you directly stream tcpdump output to a D4 server with the following`
			`script:`

			````
			`tcpdump -n -s0 -w - \| ./d4 -c ./conf \| socat - OPENSSL-CONNECT:$D4-SERVER-IP-ADDRESS:$PORT,verify=0`
			````

			`~~~~`
			`d4 - d4 client`
			`Read data from the configured <source> and send it to <destination>`

			`Usage: d4 -c config_directory`

			`Configuration`

			`The configuration settings are stored in files in the configuration directory`
			`specified with the -c command line switch.`

			`Files in the configuration directory`

			`key - is the private HMAC-SHA-256-128 key.`
			`The HMAC is computed on the header with a HMAC value set to 0`
			`which is updated later.`
			`snaplen - the length of bytes that is read from the <source>`
			`version - the version of the d4 client`
			`type - the type of data that is send. pcap, netflow, ...`
			`source - the source where the data is read from`
			`destination - the destination where the data is written to`
			`~~~~`

chg: [doc] Add more explanation of d4-core 2019-01-24 21:06:26 +01:00			`### Installation`

add: [doc] first version of the README 2018-12-05 10:37:20 +01:00			`~~~~`
chg: [doc] Add more explanation of d4-core 2019-01-24 21:06:26 +01:00			`cd client`
add: [doc] first version of the README 2018-12-05 10:37:20 +01:00			`git submodule init`
			`git submodule update`
			`~~~~`

chg: [doc] Add more explanation of d4-core 2019-01-24 21:06:26 +01:00			`## D4 core server`

			`D4 core server is a complete server to handle clients (sensors) including the decapsulation of the [D4 protocol](https://github.com/D4-project/architecture/tree/master/format), control of`
			`sensor registrations, management of decoding protocols and dispatching to adequate decoders/analysers.`

add: [doc] first version of the README 2018-12-05 10:37:20 +01:00			`### Requirements`

chg: [doc] Add more explanation of d4-core 2019-01-24 21:06:26 +01:00			`- Python 3.6`
			`- GNU/Linux distribution`

			`### Installation`


fix: [doc] add readme link 2019-02-28 11:47:29 +01:00			`- [Install D4 Server](https://github.com/D4-project/d4-core/tree/master/server)`
add: [doc] first version of the README 2018-12-05 10:37:20 +01:00
chg: [doc] screenshots added 2019-01-25 11:47:45 +01:00			`### Screenshots of D4 core server management`

			`![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/main.png)`
			`![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/sensor-mgmt.png)`
			`![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/server-mgmt.png)`
chg: [update readme] 2019-02-14 16:38:08 +01:00			`![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/analyzer-mgmt.png)`
			`![](https://raw.githubusercontent.com/D4-project/d4-core/master/doc/images/server-mgmt2.png)`