Sniffer SSL handshake packets

Run on a 64-bit Linux distribution (Centos, Ubuntu, Debian).
Sniff tcp/ip packets.
Detect among the sniffed packets detect SSL (https) handshake packets.
Print to stdout each detection in the following format: IP_SRC,TCP_SRC,IP_DST,TCP_DST,COUNT(TCP_OPTIONS).

How to launch

Run tests

go test

Build

GOOS=linux GOARCH=amd64 go build -o sniffer .

Run

./sniffer eth1 (eth1 is an interface) for online sniff

or

./sniffer dump.pcap (dump.pcap is an dump file) for offline file sniff

Check: http://127.0.0.1:8080/

How to launch in Docker

Only file analysis will work in Docker

Pull image

docker pull webdizi/ssl-sniffer

Run

docker run --rm -i -t -v $(pwd)/myDump.pcap:/build/packet_test.pcap webdizi/ssl-sniffer:latest (myDump.pcap is your dump file)

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
vendor		vendor
Dockerfile		Dockerfile
README.md		README.md
go.mod		go.mod
go.sum		go.sum
index.html		index.html
main.go		main.go
model.go		model.go
packet_test.pcap		packet_test.pcap
sniff.go		sniff.go
sniff_test.go		sniff_test.go
ws.go		ws.go
ws_test.go		ws_test.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Sniffer SSL handshake packets

How to launch

Run tests

Build

Run

How to launch in Docker

Pull image

Run

About

Releases

Packages

Languages

vkazmirchuk/ssl-sniffer

Folders and files

Latest commit

History

Repository files navigation

Sniffer SSL handshake packets

How to launch

Run tests

Build

Run

How to launch in Docker

Pull image

Run

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages