Full HTTP parsing added + updated README with HTTP example

.gitignore

@@ -44,3 +44,5 @@
 
 # debug information files
 *.dwo
+build/
+config/interface.cfg

CMakeLists.txt

@@ -14,10 +14,13 @@ configure_file("${CMAKE_SOURCE_DIR}/config/interface.cfg"
 set(SOURCES
     src/main.cpp
     src/entry.cpp
+    src/parsers/http.cpp
     src/parsers/ethernet.cpp
     src/parsers/ipv4.cpp
+    src/parsers/http.cpp
     src/utils/decEthernet.cpp
     # src/utils/hex.cpp
+    src/utils/decHttp.cpp
     src/config/interface.cpp
     src/utils/decIPv4.cpp
     src/parsers/arp.cpp

README.md

@@ -1,122 +1,124 @@
-# NetGuard
+NetGuard:
+NetGuard is a high-performance Network Intrusion Detection System (NIDS) implemented in modern C++ with CMake. It provides real-time network traffic analysis, multi-layer protocol parsing, custom rule-based detection, and a threat alerting system. Designed for extensibility, NetGuard aims to evolve into a Network Intrusion Prevention System (NIPS) with active mitigation capabilities.
 
-[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
-[![C++](https://img.shields.io/badge/C%2B%2B-%2300599C?style=for-the-badge&logo=cplusplus&logoColor=white)](https://isocpp.org/)
+Features
+Core Capabilities
 
-NetGuard is a high-performance Network Intrusion Detection System (NIDS) implemented in modern C++ with CMake. It provides real-time network traffic analysis, multi-layer protocol parsing, custom rule-based detection, and a threat alerting system. Designed for extensibility, NetGuard aims to evolve into a Network Intrusion Prevention System (NIPS) with active mitigation capabilities.
+Packet Processing:
+
+Ethernet frame parsing
+
+IPv4 and IPv6 support
+
+TCP, UDP, and ICMP analysis
+
+Full HTTP request and response parsing with all standard headers
+
+Detection Engine:
+
+Signature-based detection
+
+Protocol anomaly detection
+
+Stateful pattern matching
+
+Custom rule support
+
+Performance:
+
+Multi-threaded processing
+
+Zero-copy parsing
+
+Rule optimization
+
+Supported Protocols
+
+Ethernet
+
+IP (v4)
+
+ARP
+
+TCP
+
+UDP
 
-## Features
-
-### Core Capabilities
-- **Packet Processing**:
-  - Ethernet frame parsing
-  - IPv4 and IPv6 support
-  - TCP, UDP, and ICMP analysis
-  - HTTP header inspection
-- **Detection Engine**:
-  - Signature-based detection
-  - Protocol anomaly detection
-  - Stateful pattern matching
-  - Custom rule support
-- **Performance**:
-  - Multi-threaded processing
-  - Zero-copy parsing
-  - Rule optimization
-
-### Supported Protocols
-- Ethernet
-- IP (v4)
-- ARP 
-- TCP
-- UDP
-- ICMP
-- HTTP
-
-### Future Protocol Support
-To enhance detection capabilities, we plan to add support for the following protocols:
-- [ ] DNS
-- [ ] FTP
-- [ ] SMTP
-- [ ] SSH
-- [ ] TLS/SSL
-- [ ] SMB
-- [ ] RDP
-
-## Project Structure
-
-```
+ICMP
+
+HTTP
+
+Future Protocol Support
 NetGuard/
 ├── config/            # Network interface configuration
 │   └── interface.cfg
-├── docs/             # Project documentation
+├── docs/              # Project documentation
 │   └── design.md
-├── include/          # Header files
-│   ├── config/       # Interface configuration
-│   ├── parsing/      # Packet parsing headers
-│   ├── rules/        # Rule processing headers
-│   └── utils/        # Utility functions
-├── rules/            # Rule definition files
-│   ├── exploits/     # Exploit-specific rules
-│   └── protocols/    # Protocol-specific rules
-├── src/              # Source code
-│   ├── config/       # Interface configuration implementation
-│   ├── parsing/      # Packet parsing implementation
-│   ├── rules/        # Rule engine implementation
-│   └── utils/        # Utility implementations
-├── tests/            # Unit and integration tests
-└── CMakeLists.txt    # Build configuration
-```
-
-## Dependencies
-- C++17 compiler (e.g., GCC 9+, Clang 10+, MSVC 2019+)
-- CMake 3.14+
-- libpcap 1.9.0+ (for Linux/macOS) or npcap (for Windows)
-
-## Installation
-
-### Linux/macOS
-1. Install dependencies:
-   ```
-   sudo apt-get install libpcap-dev cmake g++
-   ```
-2. Clone the repository:
-   ```
-   git clone https://github.com/out-sec/NetGuard.git
-   cd NetGuard
-   ```
-3. Build the project:
-   ```
-   mkdir build
-   cd build
-   cmake -DCMAKE_BUILD_TYPE=Release ..
-   make -j$(nproc)
-   ```
-
-### Windows
-1. Install npcap from [https://npcap.com](https://npcap.com)
-2. Install CMake from [https://cmake.org/download/](https://cmake.org/download/)
-3. Install a C++ compiler (e.g., Visual Studio 2019+ with C++ tools)
-4. Clone the repository and build using CMake GUI or command line.
-
-## Usage
-1. **Configure the Network Interface**:
-   Edit `config/interface.cfg` to specify the network interface to monitor (e.g., `eth0`).
-2. **Define Detection Rules**:
-   Create or modify rule files in `rules/protocols/` or `rules/exploits/`. Refer to [Rule Syntax Guide](docs/rule_syntax.md) for details.
-3. **Run NetGuard**:
-   ```
-   sudo ./build/netguard
-   ```
-   Note: Running as root is required to capture packets.
-
-## Contributing
-We welcome contributions! Please read our [Contribution Guidelines](CONTRIBUTION.md) for detailed instructions on how to contribute, including setting up the development environment and submitting pull requests.
-
-## License
-This project is licensed under the MIT License. See the [LICENSE](LICENSE) file for details.
-
-## Contact
-For questions or feedback, please contact us at [[email protected]](mailto:[email protected]) or open an issue on [GitHub](https://github.com/out-sec/NetGuard/issues).
-
-## Contributors
-We extend our gratitude to all contributors who have helped shape NetGuard. View the full list of contributors [here](https://github.com/out-sec/NetGuard/graphs/contributors).
+├── include/           # Header files
+│   ├── config/
+│   ├── parsing/
+│   ├── rules/
+│   └── utils/
+├── rules/             
+│   ├── exploits/
+│   └── protocols/
+├── src/               
+│   ├── config/
+│   ├── parsing/
+│   ├── rules/
+│   └── utils/
+├── tests/
+└── CMakeLists.txt
+
+Dependencies:
+
+C++17 compiler (GCC 9+, Clang 10+, MSVC 2019+)
+
+CMake 3.14+
+
+libpcap 1.9.0+ (Linux/macOS) or npcap (Windows)
+
+Installation:
+Linux/macOS
+sudo apt-get install libpcap-dev cmake g++
+git clone https://github.com/out-sec/NetGuard.git
+cd NetGuard
+mkdir build && cd build
+cmake -DCMAKE_BUILD_TYPE=Release ..
+make -j$(nproc)
+Windows
+
+Install npcap from https://npcap.com
+
+Install CMake from https://cmake.org/download/
+
+Install a C++ compiler (Visual Studio 2019+ with C++ tools)
+
+Clone the repository and build with CMake
+
+Usage
+1. Configure the Network Interface
+
+Edit:
+config/interface.cfg
+Example:
+interface=ens33
+2. Run NetGuard (Live Capture Mode)
+sudo ./build/netguard
+Root privileges are required for packet capture.
+
+3. Test with a .pcap File
+
+You can replay captured traffic into the monitored interface:
+sudo apt install tcpreplay
+sudo tcpreplay --intf1=ens33 sample.pcap
+Or modify the source code to read .pcap files directly for offline analysis.
+
+Contributing
+
+We welcome contributions! See CONTRIBUTION.md for guidelines.
+
+License
+
+MIT License — see LICENSE.
+