Scribd
Upload
3 views

Network packet Analyzer

Uploaded by

ShivaPreethi
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
3 views

Network packet Analyzer

Uploaded by

ShivaPreethi
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

Network Packet Analyzer - Packet Sniffer Tool

Objective
The purpose of this packet sniffer tool is to capture and analyze network traffic,
providing essential insights into each packet, such as the source and destination IP
addresses, protocol type, and payload data. Built for educational purposes, this tool
enables a deeper understanding of network protocols, packet structures, and the flow of
data across networks. This packet sniffer emphasizes ethical use in controlled
environments to ensure privacy and security.

Features
1. Real-Time Packet Capturing: Captures packets as they are transmitted over the
network.
2. IP Analysis: Displays source and destination IP addresses, enabling users to trace
packet origins and destinations.
3. Protocol Detection: Identifies common protocols such as TCP and UDP, labeling
others as "Other."
4. Payload Inspection: Shows packet payload data to analyze the content of
network packets.
5. Configurable Packet Count: Users can adjust the number of packets to capture
in one session.

How It Works
 Packet Capture: The tool leverages scapy's sniff function, which intercepts
packets at Layer 3 (Network Layer). Using a filter, it captures only IP-based
packets.
 Packet Analysis: For each packet, the packet_callback function extracts key data:
o IP Layer: Retrieves source and destination IP addresses from the IP
header.
o Protocol Identification: Checks if the packet uses TCP or UDP,
categorizing any other protocol as “Other.”
o Payload Extraction: Displays the packet’s payload data, showing raw
bytes for inspection.
 Output: Each packet's information is displayed in a readable format, allowing
users to review network activity packet by packet.

Code Implementation
from scapy.all import sniff
from scapy.layers.inet import IP, TCP, UDP

# Packet analysis function


def packet_callback(packet):
if IP in packet:
ip_layer = packet[IP]
protocol = "TCP" if TCP in packet else "UDP" if UDP in packet else "Other"
print(f"Source IP: {ip_layer.src}")
print(f"Destination IP: {ip_layer.dst}")
print(f"Protocol: {protocol}")
print(f"Payload: {bytes(packet[TCP].payload) if TCP in packet else
bytes(packet[UDP].payload) if UDP in packet else 'N/A'}")
print("="*40)

# Sniff packets at Layer 3


sniff(prn=packet_callback, count=10, filter="ip") # Adjust count as needed

Output:
Explanation of the Output
1. Source IP: ----- The IP address from which the packet originated (e.g.,
192.168.1.100).
2. Destination IP: ------- The IP address to which the packet is sent (e.g.,
192.168.1.1).
3. Protocol: --------- The protocol used by the packet (e.g., TCP, UDP, or
Other).
4. Payload: ---------The raw data contained in the packet. For TCP and UDP,
this could include HTTP requests, DNS queries, or other information.

Note
The actual output will vary depending on the network activity and the data packets
being transmitted at the time of sniffing. To make sense of raw payload data,
further processing or decoding may be required, depending on the application
protocol in use.

Requirements
1. Python: Version 3.6 or above.
2. Scapy Library: Install via pip install scapy to access network packet
manipulation and analysis functions.
3. Admin Privileges: Root/admin permissions may be required for capturing
packets on certain networks or interfaces.
4. Controlled Network Environment: It’s recommended to run this tool in a safe,
private network to ensure compliance with network monitoring policies.

Uses
 Network Security Education: Ideal for students and professionals learning
about network security, packet structures, and traffic analysis.
 Protocol Analysis: Understand the characteristics of TCP, UDP, and other
protocols by analyzing real-time traffic.
 Troubleshooting Network Issues: Capture and inspect packets to identify
potential network misconfigurations or anomalies.
 Ethical Hacking Training: Use in controlled, legal environments to develop
foundational skills in ethical hacking and penetration testing.

Final Thoughts
This packet sniffer tool provides valuable insights into network traffic, emphasizing
ethical practices and educational use. By understanding packet structures, protocols, and
payloads, users can gain foundational skills in network security and monitoring.
Remember, while this tool is highly educational, it should be used responsibly and only
in environments where monitoring is permitted.

*** Happy learning, and let’s keep networks secure and private!*****

You might also like