|
@@ -10,7 +10,7 @@ It supports TCP, UDP and ICMP packets, both on IPv4 and IPv6<br>
|
|
|
All BPF-Filter on top of IP which can be used by tcpdump are also supported.<br>
|
|
|
<p>
|
|
|
|
|
|
-For HTTP connections, there is an argument to show part of its payload.<br>
|
|
|
+For HTTP connections, there is an argument (<code>-H resp. -Hl</code>) to show short or long payload.<br>
|
|
|
|
|
|
|
|
|
Under some cirumstances the program/PID cannot be evaluated. This mavericks would be reported as follow:
|
|
@@ -33,14 +33,16 @@ This program needs Python 3.x or Python 2.x.
|
|
|
|
|
|
|
|
|
Homepage (german): https://wiki.zweiernet.ch/wiki/sisniff
|
|
|
+
|
|
|
+Direct Download: `wget https://git.zweiernet.ch/sigi/sisniff/raw/master/sisniff`
|
|
|
|
|
|
|
|
|
<pre>
|
|
|
--------------------
|
|
|
# sisniff -h
|
|
|
-usage: sisniff [-h] -i {eth0,lo,wlan0} [-n] [-p program|not-program] [-4] [-6] [-pH] [-pHl] [filter]
|
|
|
+usage: sisniff [-h] -i {eth0,lo,wlan0} [-n] [-p program|not-program] [-4] [-6] [-H] [-Hl] [filter]
|
|
|
|
|
|
-sisniff V1.2
|
|
|
+sisniff V1.3.1
|
|
|
2017-2022 by sigi <https://wiki.zweiernet.ch/wiki/sisniff>
|
|
|
|
|
|
positional arguments:
|
|
@@ -48,15 +50,14 @@ positional arguments:
|
|
|
|
|
|
optional arguments:
|
|
|
-h, --help show this help message and exit
|
|
|
- -i {eth0,lo,tun0,wlan0}
|
|
|
- Interface (required)
|
|
|
+ -i {eth0,lo,wlan0} Interface (required)
|
|
|
-n Do not resolve IP-Addresses
|
|
|
-p program|not-program
|
|
|
Filter by program name (accepts * for matching) ([not-] negates)
|
|
|
-4 Only IPv4
|
|
|
-6 Only IPv6
|
|
|
- -pH Show HTTP Payload
|
|
|
- -pHl Show HTTP Payload, long output
|
|
|
+ -H Show HTTP Payload
|
|
|
+ -Hl Show HTTP Payload, long output
|
|
|
--------------------
|
|
|
</pre>
|
|
|
|
|
@@ -72,7 +73,7 @@ optional arguments:
|
|
|
# sisniff -i wlan0 "port not ssh"
|
|
|
# sisniff -i wlan0 -p *vpn*
|
|
|
# sisniff -i wlan0 -p not-thunderbird-bin -4 "host not www.zweiernet.ch"
|
|
|
-# sisniff -i eth0 -p firefox -pHl
|
|
|
+# sisniff -i eth0 -p firefox -Hl "port 80"
|
|
|
</pre>
|
|
|
|
|
|
|