PSniff is a console based (a QT based is coming shortly) packet sniffer based on the PF_PACKET feature of kernel 2.0 onwards. The projects at providing support for maximum number of protocols keeping the innumerable no. of features of Ethereal in mind. It provides protocol based filtering using BPF. The packet spoofing feature is currently under development..
Click here to do the project details page.
Currently the PSniff supports the following protocols. ( Watch out for this list in future )
IP | |
TCP | |
UDP | |
ICMP | |
IGMP | |
GGP | |
IP-ENCAP | |
PRMP | |
EGP | |
IGP | |
NVP | |
RRP | |
MTP | |
MIP | |
IPV6 | |
Telnet | |
Ftp | |
SSH | |
SMTP | |
Nameserver | |
SMTP | |
Finger | |
HTTP | |
SNMP |
This list has been purposely made short, to focus on other features.
Support for some important protocols like ARP, BGP, RIP, NetBIOS along with others is planned. Also spoofing / packet shaping using Libnet is in the pipeline.
You can download PSniff source or binary in either .tar.gz format.
All archives include documentation.
The full documentation is included in the archives, in various formats (plain text, Info, HTML and Texinfo source),
Akshay Singh Rawat: psniff@akshayrawat.net |
Libnet page | |
Libpcap -A useful library for quick implementation of Packet Sniffers. A tutorial for the same. | |
An introduction to PF_PACKET based packet sniffing. | |
The TCPDUMP project homepage. | |
The Ethereal project homepage |
Last updated by Akshay Singh Rawat on 25 Jan 2004
Hosted by