|  | @@ -10,7 +10,7 @@ It supports TCP, UDP and ICMP packets, both on IPv4 and IPv6<br>
 | 
											
												
													
														|  |  All BPF-Filter on top of IP which can be used by tcpdump are also supported.<br>
 |  |  All BPF-Filter on top of IP which can be used by tcpdump are also supported.<br>
 | 
											
												
													
														|  |  <p>
 |  |  <p>
 | 
											
												
													
														|  |  
 |  |  
 | 
											
												
													
														|  | -For HTTP connections, there is an argument to show part of its payload.<br>
 |  | 
 | 
											
												
													
														|  | 
 |  | +For HTTP connections, there is an argument (<code>-H resp. -Hl</code>) to show short or long payload.<br>
 | 
											
												
													
														|  |  
 |  |  
 | 
											
												
													
														|  |   
 |  |   
 | 
											
												
													
														|  |  Under some cirumstances the program/PID cannot be evaluated. This mavericks would be reported as follow:
 |  |  Under some cirumstances the program/PID cannot be evaluated. This mavericks would be reported as follow:
 | 
											
										
											
												
													
														|  | @@ -33,14 +33,16 @@ This program needs Python 3.x or Python 2.x.
 | 
											
												
													
														|  |   
 |  |   
 | 
											
												
													
														|  |   
 |  |   
 | 
											
												
													
														|  |  Homepage (german): https://wiki.zweiernet.ch/wiki/sisniff
 |  |  Homepage (german): https://wiki.zweiernet.ch/wiki/sisniff
 | 
											
												
													
														|  | 
 |  | +
 | 
											
												
													
														|  | 
 |  | +Direct Download: `wget https://git.zweiernet.ch/sigi/sisniff/raw/master/sisniff` 
 | 
											
												
													
														|  |   
 |  |   
 | 
											
												
													
														|  |   
 |  |   
 | 
											
												
													
														|  |  <pre>
 |  |  <pre>
 | 
											
												
													
														|  |  --------------------
 |  |  --------------------
 | 
											
												
													
														|  |  # sisniff -h
 |  |  # sisniff -h
 | 
											
												
													
														|  | -usage: sisniff [-h] -i {eth0,lo,wlan0} [-n] [-p program|not-program] [-4] [-6] [-pH] [-pHl] [filter]
 |  | 
 | 
											
												
													
														|  | 
 |  | +usage: sisniff [-h] -i {eth0,lo,wlan0} [-n] [-p program|not-program] [-4] [-6] [-H] [-Hl] [filter]
 | 
											
												
													
														|  |  
 |  |  
 | 
											
												
													
														|  | -sisniff V1.2
 |  | 
 | 
											
												
													
														|  | 
 |  | +sisniff V1.3.1
 | 
											
												
													
														|  |  2017-2022 by sigi <https://wiki.zweiernet.ch/wiki/sisniff>
 |  |  2017-2022 by sigi <https://wiki.zweiernet.ch/wiki/sisniff>
 | 
											
												
													
														|  |  
 |  |  
 | 
											
												
													
														|  |  positional arguments:
 |  |  positional arguments:
 | 
											
										
											
												
													
														|  | @@ -48,15 +50,14 @@ positional arguments:
 | 
											
												
													
														|  |  
 |  |  
 | 
											
												
													
														|  |  optional arguments:
 |  |  optional arguments:
 | 
											
												
													
														|  |    -h, --help            show this help message and exit
 |  |    -h, --help            show this help message and exit
 | 
											
												
													
														|  | -  -i {eth0,lo,tun0,wlan0}
 |  | 
 | 
											
												
													
														|  | -                        Interface (required)
 |  | 
 | 
											
												
													
														|  | 
 |  | +  -i {eth0,lo,wlan0}    Interface (required)
 | 
											
												
													
														|  |    -n                    Do not resolve IP-Addresses
 |  |    -n                    Do not resolve IP-Addresses
 | 
											
												
													
														|  |    -p program|not-program
 |  |    -p program|not-program
 | 
											
												
													
														|  |                          Filter by program name (accepts * for matching) ([not-] negates)
 |  |                          Filter by program name (accepts * for matching) ([not-] negates)
 | 
											
												
													
														|  |    -4                    Only IPv4
 |  |    -4                    Only IPv4
 | 
											
												
													
														|  |    -6                    Only IPv6
 |  |    -6                    Only IPv6
 | 
											
												
													
														|  | -  -pH                   Show HTTP Payload
 |  | 
 | 
											
												
													
														|  | -  -pHl                  Show HTTP Payload, long output
 |  | 
 | 
											
												
													
														|  | 
 |  | +  -H                   Show HTTP Payload
 | 
											
												
													
														|  | 
 |  | +  -Hl                  Show HTTP Payload, long output
 | 
											
												
													
														|  |  --------------------
 |  |  --------------------
 | 
											
												
													
														|  |  </pre>
 |  |  </pre>
 | 
											
												
													
														|  |  
 |  |  
 | 
											
										
											
												
													
														|  | @@ -72,7 +73,7 @@ optional arguments:
 | 
											
												
													
														|  |  # sisniff -i wlan0 "port not ssh"
 |  |  # sisniff -i wlan0 "port not ssh"
 | 
											
												
													
														|  |  # sisniff -i wlan0 -p *vpn*
 |  |  # sisniff -i wlan0 -p *vpn*
 | 
											
												
													
														|  |  # sisniff -i wlan0 -p not-thunderbird-bin -4 "host not www.zweiernet.ch"
 |  |  # sisniff -i wlan0 -p not-thunderbird-bin -4 "host not www.zweiernet.ch"
 | 
											
												
													
														|  | -# sisniff -i eth0 -p firefox -pHl		
 |  | 
 | 
											
												
													
														|  | 
 |  | +# sisniff -i eth0 -p firefox -Hl "port 80"		
 | 
											
												
													
														|  |  </pre>
 |  |  </pre>
 | 
											
												
													
														|  |  
 |  |  
 | 
											
												
													
														|  |  
 |  |  
 |