Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Perl TCP sniffer
- Thread starter awolff01
- Start date
You can use the Net:
capUtils and NetPacket modules to build a primitive sniffer in perl.
Here is a quick http sniffer in perl (modified from NetPcket::TCP man page):
Your platform must support libpcap to use the Net:cap and Net:capUtils modules.
Hope that helps.
capUtils and NetPacket modules to build a primitive sniffer in perl.Here is a quick http sniffer in perl (modified from NetPcket::TCP man page):
Code:
#!/usr/bin/perl -w
use strict;
use Net::PcapUtils;
use NetPacket::Ethernet qw(:strip);
use NetPacket::IP qw(:strip);
use NetPacket::TCP;
sub process_pkt {
my($arg, $hdr, $pkt) = @_;
my $tcp_obj = NetPacket::TCP->decode(ip_strip(eth_strip($pkt)));
if (($tcp_obj->{dest_port} == 80)) {
print($tcp_obj->{data});
}
}
Net::PcapUtils::loop(\&process_pkt, FILTER => 'tcp');Hope that helps.
...sounds like you just need to monitor port 80 rather than write your own sniffy thingy. How about tcpdump (
"As soon as we started programming, we found to our surprise that it wasn't as easy to get programs right as we had thought. Debugging had to be discovered. I can remember the exact instant when I realized that a large part of my life from then on was going to be spent in finding mistakes in my own programs."
--Maurice Wilkes
"As soon as we started programming, we found to our surprise that it wasn't as easy to get programs right as we had thought. Debugging had to be discovered. I can remember the exact instant when I realized that a large part of my life from then on was going to be spent in finding mistakes in my own programs."
--Maurice Wilkes
- Status