{"id":13775338,"url":"https://github.com/jduncanator/isniff","last_synced_at":"2026-01-19T19:30:37.345Z","repository":{"id":21308385,"uuid":"24624794","full_name":"jduncanator/iSniff","owner":"jduncanator","description":"Packet capture and network sniffer for Apple iOS devices (iPhone / iPod). An implementation of iOS 5+ Remote Virtual Interface service and pcapd.","archived":false,"fork":false,"pushed_at":"2017-10-23T22:18:49.000Z","size":112,"stargazers_count":28,"open_issues_count":0,"forks_count":7,"subscribers_count":5,"default_branch":"master","last_synced_at":"2024-11-17T10:39:45.030Z","etag":null,"topics":["apple","idevice","ios","iphone","ipod","network-monitoring","packet-capture","pcap","sniffer","wireshark"],"latest_commit_sha":null,"homepage":"","language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jduncanator.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2014-09-30T04:47:12.000Z","updated_at":"2024-07-07T01:18:58.000Z","dependencies_parsed_at":"2022-08-19T07:40:41.236Z","dependency_job_id":null,"html_url":"https://github.com/jduncanator/iSniff","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jduncanator%2FiSniff","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jduncanator%2FiSniff/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jduncanator%2FiSniff/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jduncanator%2FiSniff/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jduncanator","download_url":"https://codeload.github.com/jduncanator/iSniff/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253533983,"owners_count":21923515,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["apple","idevice","ios","iphone","ipod","network-monitoring","packet-capture","pcap","sniffer","wireshark"],"created_at":"2024-08-03T17:01:37.101Z","updated_at":"2026-01-19T19:30:37.332Z","avatar_url":"https://github.com/jduncanator.png","language":"C","funding_links":[],"categories":["\u003ca id=\"f13469c9891173804423be4403b2c4ff\"\u003e\u003c/a\u003epcap"],"sub_categories":["\u003ca id=\"eb49514924c3f4bf2acf6f3a4436af13\"\u003e\u003c/a\u003e未分类"],"readme":"# iSniff\n\niSniff is a command line tool that interfaces with the built-in packet capture capabilities of iOS 5+ devices. \n\niSniff outputs a raw packet trace in pcap format which can then be used to save to a file or piped to other commonly used packet capture software.\n\n## Usage\n\n```\nUsage: isniff [OPTIONS] [PCAPFILE]\nCapture packets on a connected iDevice.\n\n  If PCAPFILE is passed, write the raw packets to file\n  rather than writing to STDOUT.\n\n  -u, --udid UDID       Target specific device by its 40-digit device UDID.\n  -l, --list            list UDID of all attached devices\n  -h, --help            prints usage information\n  -d, --debug           enable communication debugging\n```\n\n## Getting Started\n\nBy default iSniff will connect to the first connected device it finds and output the raw pcap data to *stdout*. This may not seem very useful but it allows easy use of the data in whatever tool you are most fluent with.\n\nThe easiest way to get started is to simply capture all packets on a connected iDevice to a pcap file:\n\n```\nisniff capture.pcap\n```\n\nThis will start the packet capture service on the connected iDevice and start capturing all network to `capture.pcap`. To stop capturing packets signal the program to stop with `Ctrl+C`. iSniff will then flush the capture to disk and close.\n\n### Using iSniff with tcpdump\n\nThis is nice but what if you want to monitor the capture in real-time? Normally the goto command line packet capture program is `tcpdump` a lightweight but feature packed packet sniffer based on libpcap. To use `tcpdump` like you normally would, simply pipe the output of iSniff to `tcpdump` with the flags `-r-`:\n\n```\nisniff | tcpdump -r-\n```\n\n`tcpdump` will then start logging the packets as they are received as if you had have just called `tcpdump` on the iDevice itself!\n\n### Using iSniff with Wireshark\n\nThe same principle above applies to any packet tracing or capture program that can parse pcap-format packet captures from *stdin*. To view a live capture in Wireshark simply start it with the following command and flags:\n\n```\nisniff | wireshark -Ski-\n```\n\nThis will start Wireshark and display packets as they are captured.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjduncanator%2Fisniff","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjduncanator%2Fisniff","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjduncanator%2Fisniff/lists"}