{"id":28427789,"url":"https://github.com/retro-m/ghostsniffer","last_synced_at":"2025-09-13T01:09:30.235Z","repository":{"id":283217345,"uuid":"949436591","full_name":"RetrO-M/GhostSniffer","owner":"RetrO-M","description":"A network packet sniffer designed for educational purposes, allowing users to capture and analyze HTTP requests, potential credentials, and network traffic on a specified interface","archived":false,"fork":false,"pushed_at":"2025-03-19T05:17:52.000Z","size":10,"stargazers_count":2,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-07-04T08:40:29.634Z","etag":null,"topics":["cybersecurity","ethical-hacking","hacking","hacking-tool","network","network-packets","python","scanner","sniffer","sniffer-packet"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/RetrO-M.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-03-16T13:14:19.000Z","updated_at":"2025-03-20T13:57:16.000Z","dependencies_parsed_at":"2025-03-19T12:32:10.256Z","dependency_job_id":null,"html_url":"https://github.com/RetrO-M/GhostSniffer","commit_stats":null,"previous_names":["retro-m/ghostsniffer"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/RetrO-M/GhostSniffer","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RetrO-M%2FGhostSniffer","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RetrO-M%2FGhostSniffer/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RetrO-M%2FGhostSniffer/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RetrO-M%2FGhostSniffer/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/RetrO-M","download_url":"https://codeload.github.com/RetrO-M/GhostSniffer/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RetrO-M%2FGhostSniffer/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":274903421,"owners_count":25371151,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-12T02:00:09.324Z","response_time":60,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","ethical-hacking","hacking","hacking-tool","network","network-packets","python","scanner","sniffer","sniffer-packet"],"created_at":"2025-06-05T12:30:25.329Z","updated_at":"2025-09-13T01:09:30.025Z","avatar_url":"https://github.com/RetrO-M.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cp align='center'\u003e\r\n  \u003cb\u003eGhostSniffer\u003c/b\u003e\u003cbr\u003e  \r\n  \u003ca href=\"https://github.com/RetrO-M\"\u003eGithub\u003c/a\u003e |\r\n  \u003ca href=\"https://github.com/RetrO-M/GhostSniffer/issues\"\u003eReport Bug\u003c/a\u003e |\r\n  \u003ca href=\"https://x.com/DeAn0nim0us\"\u003eTwitter\u003c/a\u003e\r\n\u003c/p\u003e\r\n\r\nThis script uses Scapy to capture network packets from a specified interface and extract HTTP request information, as well as potential credentials (such as usernames and passwords) sent in clear text over the network.\r\n\r\nThe script operates interactively and displays requested URLs along with any possible login credentials, including source and destination IP addresses.\r\n\r\n## Donate\r\n**Monero** : `455RrwkuryVRioADddHWfGXrWHSLk4n1DHX36E4tKkBHScps4CeFwMWVemyqgWkL5eYf5L2zRVkgQB4Y9dwaechDKqQzC7p`\r\n\r\n## Setup\r\n\r\n### Setup GhostSniffer\r\n\r\n1. **Download** : `git clone https://github.com/RetrO-M/GhostSniffer` \u0026 `cd GhostSniffer`\r\n2. **Setup** : `bash setup.sh`\r\n\r\n### Install modules\r\n\r\n```sh\r\npip install scapy\r\npip install colorama\r\n```\r\n\r\n## Features\r\n- **HTTP Packet Capture**: `The script captures HTTP packets and extracts the requested URLs.`\r\n- **Credential Identification**: `If any sensitive information (such as usernames and passwords) is sent in clear text, it will be displayed.`\r\n- **Source and Destination IPs**: `The tool displays the source and destination IP addresses of captured requests.`\r\n- **HTTPS Packet Display**: `Indicates encrypted HTTPS connections (without decrypted content).`\r\n- **Interactive Display**: `Formats results using Colorama for better readability.`\r\n\r\n## Usage\r\n\r\n### Running the Script\r\nTo use the script, specify the network interface to monitor. For example, to monitor the Wi-Fi interface, run the following command: `python main.py -i Wi-Fi`\r\n\r\n### Arguments\r\n`-i`, `--interface`: The name of the network interface to use (e.g., `Wi-Fi`, `eth0`, etc.)\r\n\r\n### Sample output\r\n\r\n```cs\r\nHTTPS  192.168.1.1 → 127.0.0.1\r\nHTTP  testphp.vulnweb.com/userinfo.php  192.168.1.1 → 127.0.0.1\r\ntestphp.vulnweb.com/userinfo.php  username=test\u0026password=test → login=test%2Ftest\r\n```\r\n\r\n```cs\r\n'username', 'uname', 'user', 'login', 'password', 'pass', 'signin',\r\n'signup', 'name', 'email', 'phone', 'uid', 'passw', 'passContainer'\r\n```\r\n\r\n## Legal Disclaimer\r\n- This tool is provided for educational purposes only. Using this tool to intercept network packets without authorization is illegal. You must obtain explicit permission from network owners before running this script.\r\n\r\n- If you are a minor, please consult an adult before using this tool.\r\n\r\n## Disclaimer\r\n- **Warning**: \r\n  - This tool is intended for educational use and testing in a controlled environment. Using this tool to capture or eavesdrop on information without explicit consent is illegal. You must obtain permission before using this tool on any network that is not your own.\r\n  The author is not responsible for any misuse of this tool. If you are a minor, you should consult an adult before using this tool. It is your responsibility to comply with all relevant laws and regulations regarding cybersecurity in your country.\r\n\r\n- **IMPORTANT**: \r\n  - If this tool is used for illegal activities, I reserve the right to remove the repository at any time without notice.\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fretro-m%2Fghostsniffer","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fretro-m%2Fghostsniffer","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fretro-m%2Fghostsniffer/lists"}