- More modules (always)
- Fix bugs (always :)
- Different logging levels
- \x33\x55 etc
DONE - rot13 encode/decode
- morse code -.--...-.-  .-- .-..-.. ---..-- encode/decode
- leet? Whoops, I mean "l337" encode
- NTLM v1 & v2 encode
- LANMAN? encode
- CHAP? encode
- Piglatin :P encode/decode
- Rainbow tables encode/decode (Enhanced is working on this)
- Ruby module for generating traffic graphs? (gruff)
- Blog post/tutorial: putting a module in a category for nsm-console
- Screencast: creating a command for nsm-console
- Context-sensative tab completion
- Create coherent code. Comment things (big project)
- Some kind of unified output structure (?)
- Guti - run -h addition to help run
DONE - Fix error with an alias handling arguments
DONE - Add 'dump' command, similar to print, dump binary payload of packet(s) to a file
DONE - Warning when file doesn't exist
DONE - Harimau attempts to use wget if it can, since it's about 10 times faster than Net::HTTP
DONE - Argus rdns lookups were killing the speed. Added '-n' so it doesn't do that by default
DONE - checkip tried to use wget if it's installed, should be much much faster
DONE - tcptrace doesn't do rdns lookups because it was dying, -n is the default now
DONE - fixed a typo in urlescape (en|de)coding, thanks John!
DONE - Add clamscan module
- make clamscan module do the tcpxtract itself, or write some way to include dependencies
DONE - Use rawpacket's tcpxtract.conf instead of the regular one. (extract many many more types)
DONE - Add foremost module
DONE - let the clamscan module select which extraction dir it wants to look in (foremost? tcpxtract?)
- perhaps implement scruby integration? (or scapy, if nothing else)
- Allow encode/decode to work on files instead of just a textstring
DONE - Need to add "color on", instead of just off and toggle
DONE - Auto gunzip pcap files on the fly (only for .gz extensions) (doesn't work for directories)
DONE - Clean up the autogunzipping
DONE - Create the temp file in the NSM-Console directory, file is cleaned up on exit
DONE - Directories support gzip'd files for modules, print and dump
DONE (N/A)- dump doesn't like temp files, fix this -- doesn't matter any more, since gunzip the file once by default
DONE - gunzip once, not every time, silly me.
DONE - Separate the bro alarms and extracting the bro contents
DONE - Update Snort rules (community and emerging)
- Add a class to handle option variables, like "NSM_Option", instead of using global variables
