Skip to content
/ Packet-Sniffer Public

Ethernet data-link layer raw packet sniffer for Windows 10 in Python (2.7) with npcap

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

k-souvatzidaki/Packet-Sniffer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
README.md
README.md
 
 
formatting.py
formatting.py
 
 
ports_types.py
ports_types.py
 
 
sniffer.py
sniffer.py
 
 
unpacking.py
unpacking.py
 
 

Repository files navigation

Packet Sniffer

About

A simple data-link layer Ethernet (802.3) raw packet sniffer in Python. Using the PyPCAP libpcap module ,and npcap for Windows 10 compatibility. Unpacking frame headers, starting from data-link, and printing information.

Supported Protocols

Data-Link Layer

  • MAC

Network Layer

  • IPv4
  • ARP

Transport Layer

  • TCP
  • UDP
  • IGMP

Run

python sniffer.py

PyPCAP installation guideline for Windows 10

Reading raw Data Link Layer packets in Windows 10 is a bit tricky but it works by replacing WpdPack with Npcap while installing PyPCAP

  1. Install Npcap
  2. Download the Npcap SDK and place it in the hd root directory as "C:\wpdpack" (the name "wpdpack" is mandatory for PyPCAP to recognise Npcap)
  3. Download the PyPCAP source and place it in the root directory as well, as "C:\pypcap-1.x.x"
  4. Install the Microsoft Visual C++ Compiler for Python 2.7
  5. Start a command prompt for the compiler and install PyPCAP with the following instructions:
set INCLUDE=%INCLUDE%;c:\WpdPack\Include
set LIB=%LIB%;c:\WpdPack\Lib
pushd C:\pypcap-1.x.x //the installed version
python setup.py install

About

Ethernet data-link layer raw packet sniffer for Windows 10 in Python (2.7) with npcap

Topics

python networking

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages