High Performance Network Sniffer for Packet Inspection
netsniff-ng is a high performance Linux network sniffer for packet inspection.
Basically, it is similar to tcpdump, but it doesn't need syscalls for fetching
packets. Instead, it uses an memory mapped area within kernel space for
accessing packets without the need of copying them to userspace ('zero-copy'
mechanism). It can be used for protocol analysis and reverse engineering,
network debugging, measurement of performance throughput, or network statistics
creation of incoming packets on central network nodes like routers or
firewalls.
The netsniff-ng toolkit consists of the following utilities:
* netsniff-ng, a fast zero-copy analyzer, pcap capturing and replaying tool
* trafgen, a multithreaded low-level zero-copy network packet generator
* mausezahn, high-level packet generator for HW/SW appliances with Cisco-CLI
* bpfc, a Berkeley Packet Filter compiler, Linux BPF JIT disassembler
* ifpps, a top-like kernel networking statistics tool
* flowtop, a top-like netfilter connection tracking tool
* curvetun, a lightweight curve25519-based IP tunnel
* astraceroute, an autonomous system (AS) trace route utility
- Devel package for openSUSE:Factory
-
1
derived packages
- Links to openSUSE:Factory / netsniff-ng
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout network:utilities/netsniff-ng && cd $_
- Create Badge
Source Files
Filename | Size | Changed |
---|---|---|
netsniff-ng-0.6.1.tar.xz | 0000565956 553 KB | |
netsniff-ng.changes | 0000003694 3.61 KB | |
netsniff-ng.spec | 0000003303 3.23 KB |
Revision 19 (latest revision is 43)
- update to 0.6.1 - Newly added trafgen configuration language which allows to specify the packets in a more convenient format. See trafgen(8) for more details on the supported protocols and keywords. - Additional runtime commands for flowtop which allow to toggle/filter display of flows. - Command line options to pass macro definitions to trafgen and bpfc. - Made the build of all netsniff-ng tools reproducible (stable link order). - Fix download of GeoIP databases so the files don't get corrupted.
Comments 0