一個簡單的網絡抓包程序

時間 2020-02-04

原文原文鏈接

#include<stdio.h>
#include<stdlib.h>
#include<string.h>
#include<pcap.h>

#define MAXBYTES2CAPTURE 2048

void ProcessPacket(u_char *arg,const struct pcap_pkthdr *pkthdr,const u_char *packet)
{
	int i = 0;
	int *counter = (int *)arg;
	printf("Packet Count %d\n",++(*counter));
	printf("Recveived Packet Size :%d\n",pkthdr->len);
	printf("Rayload:\n");
	for(i=0;i< pkthdr->len;i++)
	{
		printf("%02x ",(unsigned int)packet[i]);

		if((i%16 == 15 && i != 0) || (i == pkthdr->len - 1))
			printf("\n");

		printf("\n\n******************************\n");
		return ;
	}
}

int main(int argc,char * argv[])
{
	int i = 0,count = 0;
	pcap_t *descr = NULL;
	char errbuf[PCAP_ERRBUF_SIZE],*device = NULL;
	bpf_u_int32 netaddr = 0,mask = 0;
	struct bpf_program filter ;

	memset(errbuf,0,sizeof(errbuf));

	if(argc != 2)
		device = pcap_lookupdev(errbuf);
	else
		device = argv[1];
	printf("Try to open device %s\n",device);
	if((descr = pcap_open_live(device,MAXBYTES2CAPTURE,1,0,errbuf)) < 0 )
	{
		printf("error :%s\n",errbuf);
		exit(-1);
	}

	pcap_lookupnet(device,&netaddr,&mask,errbuf);
	if(pcap_compile(descr,&filter,"arp and ether host 00:0c:29:3f:f4:c7",0,mask) < 0)//you own HWaddr
	{
		printf("pcap_compile error\n");
		exit(-1);
	}
	pcap_setfilter(descr,&filter);

	pcap_loop(descr,2,ProcessPacket,(u_char *)&count);
	return 0;
}

相關標籤/搜索

每日一句

每一个你不满意的现在，都有一个你没有努力的曾经。