SNIFFER源代码资源-CSDN文库

共7个文件

dsw：1个

opt：1个

txt：1个

SNIFFER

4星 · 超过85%的资源需积分: 9 67 浏览量 2008-11-15 15:20:58 上传评论收藏 10KB RAR 举报

身份认证购VIP最低享 7 折!

领优惠券(最高得80元）

资源推荐

资源详情

资源评论

收起资源包目录

119128655Sniffer.rar （7个子文件）

Sniffer

Sniffer.dsp 4KB

Sniffer.ncb 49KB

Sniffer.plg 1KB

Debug

Sniffer.opt 53KB

Sniffer.dsw 539B

Sniffer.cpp 3KB

www.pudn.com.txt 218B

//////////////////////////////////////////// // Sniffer.cpp文件 #include "../common/initsock.h" #include "../common/protoinfo.h" #include <stdio.h> #include <mstcpip.h> #pragma comment(lib, "Advapi32.lib") CInitSock theSock; void DecodeTCPPacket(char *pData) { TCPHeader *pTCPHdr = (TCPHeader *)pData; printf(" Port: %d -> %d \n", ntohs(pTCPHdr->sourcePort), ntohs(pTCPHdr->destinationPort)); // 下面还可以根据目的端口号进一步解析应用层协议 switch(::ntohs(pTCPHdr->destinationPort)) { case 21: break; case 80: case 8080: break; } } void DecodeIPPacket(char *pData,FILE *fp) { IPHeader *pIPHdr = (IPHeader*)pData; in_addr source, dest; char szSourceIp[32], szDestIp[32]; printf("\n\n-------------------------------\n"); // 从IP头中取出源IP地址和目的IP地址 source.S_un.S_addr = pIPHdr->ipSource; dest.S_un.S_addr = pIPHdr->ipDestination; strcpy(szSourceIp, ::inet_ntoa(source)); strcpy(szDestIp, ::inet_ntoa(dest)); printf(" %s -> %s \n", szSourceIp, szDestIp); fprintf(fp," %s -> %s \r\n", szSourceIp, szDestIp); // IP头长度 int nHeaderLen = (pIPHdr->iphVerLen & 0xf) * sizeof(ULONG); int length = htons(pIPHdr->ipLength); int n=0; int i; for(i=0;i<length;i++) { fprintf(fp,"%02x",pData[i]&0xff); if(++n==40) { n=0; fprintf(fp,"\r\n"); } } fprintf(fp,"\r\n"); switch(pIPHdr->ipProtocol) { case IPPROTO_TCP: // TCP协议 //DecodeTCPPacket(pData + nHeaderLen); break; case IPPROTO_UDP: break; case IPPROTO_ICMP: break; } } void main() { // 创建原始套节字 SOCKET sRaw = socket(AF_INET, SOCK_RAW, IPPROTO_IP); // 获取本地IP地址 char szHostName[56]; SOCKADDR_IN addr_in; struct hostent *pHost; gethostname(szHostName, 56); if((pHost = gethostbyname((char*)szHostName)) == NULL) return ; // 在调用ioctl之前，套节字必须绑定 addr_in.sin_family = AF_INET; addr_in.sin_port = htons(0); memcpy(&addr_in.sin_addr.S_un.S_addr, pHost->h_addr_list[1], pHost->h_length); printf(" Binding to interface : %s \n", szHostName); printf(" Binding to interface : %s \n", ::inet_ntoa(addr_in.sin_addr)); if(bind(sRaw, (PSOCKADDR)&addr_in, sizeof(addr_in)) == SOCKET_ERROR) return; // 设置SIO_RCVALL控制代码，以便接收所有的IP包 DWORD dwValue = 1; if(ioctlsocket(sRaw, SIO_RCVALL, &dwValue) != 0) return ; // 开始接收封包 char buff[1024]; int nRet; printf("开始接收封包\n"); FILE *fp,*fp1; fp=fopen("c:\\data.txt","w"); while(TRUE) { int c; fp1=fopen("c:\\continue.txt","r"); fscanf(fp1,"%d",&c); fclose(fp1); if(c==1)break; nRet = recv(sRaw, buff, 1024, 0); if(nRet > 0) { DecodeIPPacket(buff,fp);printf("."); } } fclose(fp); closesocket(sRaw); }

评论收藏

内容反馈