根据python文档,我们可以构建简单的嗅探器,比如:import socket
# the public network interface
HOST = socket.gethostbyname(socket.gethostname())
# create a raw socket and bind it to the public interface
s = socket.socket(socket.AF_INET, socket.SOCK_RAW, socket.IPPROTO_IP)
s.bind((HOST, 0))
# Include IP headers
s.setsockopt(socket.IPPROTO_IP, socket.IP_HDRINCL, 1)
# receive all packages
s.ioctl(socket.SIO_RCVALL, socket.RCVALL_ON)
# receive a package
print s.recvfrom(65565)
# disabled promiscuous mode
s.ioctl(socket.SIO_RCVALL, socket.RCVALL_OFF)
对于windows平台,但在linux中socket.ioctl(socket.SIO_RCVALL, socket.RCVALL_OFF)不起作用。在
对于linux平台,这个例子会是怎样的呢?我如何在Linux中设置混杂模式?在
编辑
我有个消息:
^{pr2}$
当我做了一个@Christian James Bell的代码时:import socket
def sniffer(count, bufferSize=65565, showPort=False, showRawData=False):
# the public network interface
HOST = socket.gethostbyname(socket.gethostname())
# create a raw socket and bind it to the public interface
s = socket.socket(socket.AF_PACKET, socket.SOCK_RAW, socket.IPPROTO_IP)
# prevent socket from being left in TIME_WAIT state, enabling reuse
s.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
s.bind((HOST, 0))
# Include IP headers
s.setsockopt(socket.IPPROTO_IP, socket.IP_HDRINCL, 1)
# receive all packages
s.ioctl(socket.SIO_RCVALL, socket.RCVALL_ON)
for i in range(count):
# receive a package
package = s.recvfrom(bufferSize)
printPacket(package, showPort, showRawData)
# disabled promiscuous mode
s.ioctl(socket.SIO_RCVALL, socket.RCVALL_OFF)
def printPacket(package, showPort, showRawData):
# index values for (data, header) tuple
dataIndex = 0
headerIndex = 1
# index values for (ipAddress, port) tuple
ipAddressIndex = 0
portIndex = 1
print('IP:', package[headerIndex][ipAddressIndex])
if(showPort):
print('Port:', package[headerIndex][portIndex])
print ('') #newline
if(showRawData):
print ('Data:', package[dataIndex])
sniffer(count=10,showPort=True,showRawData=True)
有人知道怎么回事吗?在
2万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
