Menu
I want to sniff all the HTTP packets in my computer via python(version2.6.. is this possible? can I do it with scapy, or without other external modules?
829
Scrapy is only for extracting data from webpages or similar structured documents.
To actually read the packets coming from the NIC your best performance option would probably be to use a C/C++ API that has python bindings.
For example WireShark has a Python API.
Pcapy is a module for packet capture using libpcap.
LibPCAP is the packet capture library written for TCPDUMP and also used in WireShark.
Another option is to try the dpkt python module. Here is a nice write up. Here's an example using using dpkt and pcap to sniff HTTP packets.
EDIT: oops, I misread scapy. Thanks root!
As you mentioned, Scapy is another python module that also uses LibPCAP. This documentation has an example of sniffing.
If you are having trouble running on Python 2.7 check out this post.
199
https://github.com/KimiNewt/pyshark
Python wrapper for tshark
Usage:
>>> capture = pyshark.LiveCapture(interface='eth0')
>>> capture.sniff(timeout=50)
>>> capture
<LiveCapture (5 packets)>
>>> capture[3]
<UDP/HTTP Packet>
for packet in capture.sniff_continuously(packet_count=5):
print 'Just arrived:', packet
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
