descriptionnetsniff-ng toolkit, the packet sniffing beast, staging tree
homepage URLhttp://netsniff-ng.org/
repository URLgit://github.com/borkmann/netsniff-ng.git
ownerdaniel.borkmann@tik.ee.ethz.ch
last changeWed, 17 Aug 2016 07:27:44 +0000 (17 09:27 +0200)
last refreshMon, 29 Aug 2016 17:51:36 +0000 (29 19:51 +0200)
content tags
add:
README
//////////////////////////////////////////////////////////////////////////////

                    netsniff-ng - the packet sniffing beast

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
                                         .      .
netsniff-ng is a free, performant       /(      )\
Linux network analyzer and            .' {______} '.
networking toolkit. If you will,       \ ^,    ,^ /
the Swiss army knife for network        |'O\  /O'|   _.<0101011>--
packets.                                > `'  '` <  /
                                        ) ,.==., (  |
Web: http://netsniff-ng.org          .-(|/--~~--\|)-'
                                    (      ___
The gain of performance is           \__.=|___E
reached by built-in zero-copy
mechanisms, so that on packet reception and transmission the kernel does not
need to copy packets from kernel space to user space, and vice versa.

The netsniff-ng toolkit's primary usage goal is to facilitate a network
developer's / hacker's daily Linux plumbing. It can be used for network
development, debugging, analysis, auditing or network reconnaissance. It
consists of the following fixed set of utilities:

  * netsniff-ng: a zero-copy packet analyzer, pcap capturing/replaying tool
  * trafgen: a multithreaded low-level zero-copy network packet generator
  * mausezahn [*]: high-level packet generator for appliances with Cisco-CLI
  * ifpps: a top-like kernel networking and system statistics tool
  * curvetun [*]: a lightweight curve25519-based multiuser IP tunnel
  * astraceroute: an autonomous system trace route and DPI testing utility
  * flowtop: a top-like netfilter connection tracking tool
  * bpfc: a [seccomp-]BPF (Berkeley packet filter) compiler, JIT disassembler

Note that tools marked with [*] should be considered as experimental for now,
and not used in production environments as they still need more work to be
fully stable and in line with others. You have been warned!

Each release can be verified with Git and GPG, here are the steps to do so:

 1) Import the maintainers public keys:
   git show maint-tklauser-pgp-pub | gpg --import
   git show maint-dborkman-pgp-pub | gpg --import
 2) Verify the Git tag:
   git tag -v <tag-name>

Carefully read the INSTALL document for the next steps in building netsniff-ng.
Note that the toolkit is still quite young and under heavy development, not
yet feature complete and in a quality level where we're satisfied with (i.e.
for mausezahn). However, we're on a good way towards tackling all these goals.

The netsniff-ng toolkit is an open source project covered by the GNU General
Public License, version 2.0. For any questions or feedback about netsniff-ng
you are welcome to leave us a message at <netsniff-ng@googlegroups.com>.

netsniff-ng is non-profit and provided in the hope, that it is found useful.
The current project status can be considered as "working". In general, all tools
have been tested by us to a great extend including their command-line options.
In fact, many of our tools are used in a lot of production systems. However, we
give no guarantee that our tools are free of bugs! If you spot some issues,
contact us as described in REPORTING-BUGS. Also, have a look at our online FAQ
for answering your questions. This project has received support from companies
and institutions listed in the according section in the AUTHORS file. Thanks for
contributing, we're thrilled to provide you with netsniff-ng! Happy packet
hacking!
shortlog
12 days ago Vadim Kochanbuild: configure: Add option to enable debug symbolsmaster
2016-08-12 Tobias Klausertrafgen: proto: Split static protocol definition out...
2016-08-12 Vadim Kochancolorize: Squash colorize macros into colors.h
2016-08-10 Tobias Klausertrafgen: proto: Add space between switch statement...
2016-08-10 Tobias Klauserbuild: Disable all optimization options for debug builds
2016-08-09 Tobias Klausertrafgen: proto: Make bytes pointer const in proto field...
2016-08-09 Tobias Klausertrafgen: parser: Check read access to file before invok...
2016-08-09 Tobias Klausertrafgen: proto: Store registered protocols in an array
2016-08-09 Tobias Klausertrafgen: proto: Don't store context in each proto header
2016-08-05 Vadim Kochantrafgen: proto: Use field id as array index
2016-08-05 Tobias Klauserbuild: configure: Allow to compile tools without libnlcoverity_scan
2016-08-05 Vadim Kochannetsniff-ng: Allow to compile without libnl
2016-08-05 Vadim Kochantrafgen: Allow to compile without libnl
2016-08-04 Tobias Klauserbuild: configure: Use command line options to disable...
2016-08-02 Vadim Kochantrafgen: proto: Move proto headers into packet
2016-08-02 Vadim Kochantrafgen: proto: Reference to packet from struct proto_hdr
...
tags
5 months ago v0.6.1 0.6.1 release
9 months ago v0.6.0 0.6.0 release
15 months ago v0.5.9 0.5.9 release
16 months ago v0.5.9-rc5 0.5.9-rc5 release
23 months ago v0.5.9-rc4 0.5.9-rc4 release
2 years ago v0.5.9-rc3 0.5.9-rc3 release
2 years ago v0.5.9-rc2 0.5.9-rc2 release
2 years ago v0.5.9-rc1 0.5.9-rc1 release
2 years ago v0.5.8 0.5.8 release
2 years ago v0.5.8-rc5 0.5.8-rc5 release
2 years ago v0.5.8-rc4 0.5.8-rc4 release
3 years ago v0.5.8-rc3 0.5.8-rc3 release
3 years ago v0.5.8-rc2 0.5.8-rc2 release
3 years ago v0.5.8-rc1 0.5.8-rc1 release
3 years ago maint-tklauser-pgp-pub Public key of Tobias Klauser.
3 years ago maint-dborkman-pgp-pub Public key of Daniel Borkmann.
heads
12 days ago master
3 weeks ago coverity_scan