Skip to content
/ EasySniff Public

Over-the-wire traffic sniffer meant to be used as an open-source alternative to closed-source sniffers currently on the market. In addition, it is to be used to educate those who do not have experience in network-oriented programming.

License

GPL-3.0 license
9 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

D7EAD/EasySniff

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

152 Commits
EasySniff
EasySniff
 
 
images
images
 
 
setup
setup
 
 
x64/Release
x64/Release
 
 
.gitignore
.gitignore
 
 
EasySniff.sln
EasySniff.sln
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

EasySniff

NOTE

This is no Wireshark-esc network utility. The original motivation behind this repository was to show how easy it can be to write a simple network tool. Specifically, the idea came from those types of people on the internet that are obsessed with IP addresses and talk about them as if they are some magical, secret number.

Abstract

EasySniff is a smooth, clean, and effective network sniffing tool. It abstracts unnecessary technical information and makes monitoring traffic a lot easier for users. It provides a clean GUI with customizable tools and settings that the user can put to use. This tool was made to be used as an alternative to some other sniffers that may seem haphazardly made. Furthermore, it is to be used for educational purposes in the sector of network-oriented programming.

Sections of EasySniff are as follows:


Dependencies

EasySniff REQUIRES the following in order to operate:

  • WinPCap 4.1.3 (found here).
  • MSVC++ 2019 redist (found here).

Tutorial

As some may have issues using EasySniff, a tutorial is here to help! The general process of installation and usage is as follows below:

  • Download and install the dependencies listed above.
  • Download the .zip file from this repository.
  • Run setup\Release\setup.msi, this will install it to your Program Files.
    • After installation, EasySniff will now be added to your Desktop.
  • Open EasySniff and it should run fine.
    • From this point, select the adapter/interface that your desired traffic will go through and sniff!

Features

Some functions and features within EasySniff are as follows:

  • Compact executable--roughly 260KB!
  • Highly organized interface--I have OCD.
  • Multi-threaded design--100% smooth operation.
  • Full sniffing GUI oriented around the IPv4, TCP, and UDP protocols.
  • Immediate geolocation of any captured IP address--non-local.
  • Immediate ISP-related information returned for captured IPs.
  • Service integrity information regarding an ISP--known security technology.
  • Easy data export methods--IP and packet data.
  • Ability to ping any captured address on the fly!
  • Ability to quickly scan a chosen IP for any open ports.
  • Ability to look up more narrowed, specific information regarding an address.
  • Options to show more advanced data regarding captured packets.
  • ...and more!

Control Schemes

EasySniff has a few control schemes--shortcuts--for some functions that it performs. These control schemes can be found below:

  • Key click [C]:
    • ...to clear the captured addresses (or packet data).
  • Key click [S]:
    • ...to begin or end the sniffing process.
  • Single click [any mouse key]:
    • ...to copy any selected data in any shown cell.
  • Single click [any mouse key] + D:
    • ...to remove a specific row from the captured IPs until [Clear].
  • Single click [any mouse key] + P:
    • ...to perform a port scan on an IP from an appropriate cell.
  • Double click [any mouse key]:
    • ...to ping a selected IP from an appropriate cell.

Intended Audiences

The intended audiences to use this program or its source code can be any of the following:

  • Script kiddies on XBOX, PlayStation, or, hell... even PC!
  • Genuine people who want to learn something.
  • People who want to get ideas inspired by this tool.
  • Literally anyone else.

Agreement

By using EasySniff or its source code, you agree upon the following conditions: (1). You affirm that you understand EasySniff is strictly an open-source alternative and is to be used for education regarding network-oriented programming. (2). You will not use EasySniff or its source code with any malicious intent or to commit unapproved network recon, aiding in DoS/DDoS attacking other networks, etc. (3). You are entirely responsible for your use of this application and not the developer(s), dependency developer(s), or anyone else except for you.

All responsibility of this program's usage is assumed by, and only by, the user.


Credits

Programming, GUI Design: d7ead

Quality Assurance Testers (Bug Testers): Johnny


Notes

EasySniff version is 1.1.

This was made to prove how easy it is to make a sniffer.

Bandwidth listed under "Protected" is advertised network capacity, not protection capacity.


Known Issues

  • Incremental use of RAM throughout life of the process (EasySniff.exe).
  • Doesn't work for some VPN providers and tunnels.
  • IP Lookup API isn't valid anymore. Don't feel like adding a new one.

About

Over-the-wire traffic sniffer meant to be used as an open-source alternative to closed-source sniffers currently on the market. In addition, it is to be used to educate those who do not have experience in network-oriented programming.

Topics

monitor monitoring network sniffer

Resources

Readme

License

GPL-3.0 license
Activity

Stars

9 stars

Watchers

2 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages