注册 登录  
 加关注
   显示下一条  |  关闭
温馨提示!由于新浪微博认证机制调整,您的新浪微博帐号绑定已过期,请重新绑定!立即重新绑定新浪微博》  |  关闭

itoedr的it学苑

记录从IT文盲学到专家的历程

 
 
 

日志

 
 

流媒体流捕获分析器:Driftnet  

2013-11-02 16:01:58|  分类: 视频监控 |  标签: |举报 |字号 订阅

  下载LOFTER 我的照片书  |

Driftnet - Linux man page:Driftnet能够分析出人们上网看到的图片。

driftnet - capture images from network traffic and display them in an X window; optionally, capture audio streams and play them.

Synopsis:driftnet [options] [filter code]

 
Description:Driftnet watches network traffic, and picks out and displays JPEG and GIF images for display. It is an horrific invasion of privacy and shouldn't be used by anyone anywhere. It has been described as 'a graphical tcpdump', 'EtherPeg for Unix', and called all sorts of nasty names by people on Freshmeat. It is also possible to use driftnet to capture MPEG audio data from the network and play it through a player.

Images may be saved by clicking on them.

Options

-h
Print a summary of usage.
-v
Print additional details of packets captured to the terminal.
-i interface
Listen to packets on interface. By default, driftnet will try to pick up traffic on all interfaces, but this does not work with all versions of pcap; on such systems, an interface must be specified. On some systems, driftnet can only use promiscuous mode if an interface is specified.
-p
Do not put the interface into promiscuous mode.
-a
Operate in 'adjunct mode', where driftnet gathers images for use by another program, such as Jamie Zawinski's webcollage. In this mode, no window is displayed; images are captured and saved in a temporary directory, and their names written on standard output.
-m number
In adjunct mode, silently drop images if there are more than number in the temporary directory. It is assumed that another process will delete images which it has processed.
-x prefix
The filename prefix to use when saving images, by default 'driftnet-'.
-d directory
Use directory to store temporary files. Driftnet will clear this directory of its own temporary files on exit, but will not delete the directory or any other files.
-s
Attempt to capture streamed audio data from the network, and either play it or, in adjunct mode, save it in files. At present this only works with MPEG data.
-S
Capture streamed audio data only, ignoring images.
-M command
Use the named command to play MPEG audio data. The command, which is executed using the shell, should accept MPEG frames on standard input. The default is 'mpg123 -'.
filter code
Additional filter code to restrict the packets captured, in the libpcap syntax. User filter code is evaluated as 'tcp and (filter code)'.
附件2:

README for driftnet


Driftnet watches network traffic, and picks out and displays JPEG and GIF images for display. It is an horrific invasion of privacy and shouldn't be used by anyone anywhere. It can also extract MPEG audio data from the network and play it. If you live in a house with thick walls, this may be a useful way to find out about your neighbours' musical taste.
To compile, read the Makefile and make any changes required, then type `make' and fix the errors which get displayed. Driftnet is at a very early stage of development and probably won't work for you at all.
You will need libpcap, libjpeg and libungif. On most Linux distributions these are available as packages. If you don't want a version of driftnet which will display images itself, but just want to use it to gather images for some other application, you only need libpcap -- see comments in the Makefile for more information. To play MPEG audio, you need an MPEG player-- by default, driftnet will use mpg123.
Driftnet needs to run with sufficient privilege to obtain raw packets from the network. On most systems, this means running it as root.
You can use Driftnet to sniff images passing over a wireless network.
 However, Driftnet does not understand the optional WEP encryption used with wireless ethernet. Instead, you can use Kismet, from http://www.kismetwireless.net/ to decrypt packets and pass them into a named pipe; the -f option can then be used to have Driftnet read the packets from the pipe. Thanks to Rob Timko and Joshua Wright for pointing this out;
Rob's page, http://68.38.68.127:81/writings/driftnet.html describes the process in greater detail.
If you find this program entertaining, you might want to help me develop it. The TODO file contains a list of yet-to-be-done ideas.
Driftnet is licensed under the GNU GPL. See the file COPYING in the distribution.
  评论这张
 
阅读(176)| 评论(0)
推荐 转载

历史上的今天

在LOFTER的更多文章

评论

<#--最新日志,群博日志--> <#--推荐日志--> <#--引用记录--> <#--博主推荐--> <#--随机阅读--> <#--首页推荐--> <#--历史上的今天--> <#--被推荐日志--> <#--上一篇,下一篇--> <#-- 热度 --> <#-- 网易新闻广告 --> <#--右边模块结构--> <#--评论模块结构--> <#--引用模块结构--> <#--博主发起的投票-->
 
 
 
 
 
 
 
 
 
 
 
 
 
 

页脚

网易公司版权所有 ©1997-2017