{"id":13547337,"url":"https://github.com/tecknicaltom/dsniff","last_synced_at":"2025-04-02T19:32:57.010Z","repository":{"id":55004975,"uuid":"735727","full_name":"tecknicaltom/dsniff","owner":"tecknicaltom","description":"dsniff is a collection of tools for network auditing and penetration testing.","archived":false,"fork":false,"pushed_at":"2010-06-29T05:53:39.000Z","size":373,"stargazers_count":190,"open_issues_count":5,"forks_count":44,"subscribers_count":14,"default_branch":"master","last_synced_at":"2024-11-03T15:38:39.002Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"http://dsniff.modtwo.com","language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/tecknicaltom.png","metadata":{"files":{"readme":"README","changelog":"CHANGES","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2010-06-23T13:11:11.000Z","updated_at":"2024-10-31T06:40:40.000Z","dependencies_parsed_at":"2022-08-14T08:50:27.492Z","dependency_job_id":null,"html_url":"https://github.com/tecknicaltom/dsniff","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tecknicaltom%2Fdsniff","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tecknicaltom%2Fdsniff/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tecknicaltom%2Fdsniff/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tecknicaltom%2Fdsniff/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tecknicaltom","download_url":"https://codeload.github.com/tecknicaltom/dsniff/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246880334,"owners_count":20848842,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-01T12:00:54.238Z","updated_at":"2025-04-02T19:32:55.611Z","avatar_url":"https://github.com/tecknicaltom.png","language":"C","funding_links":[],"categories":["C","\u003ca id=\"8c5a692b5d26527ef346687e047c5c21\"\u003e\u003c/a\u003e收集","\u003ca id=\"7bf0f5839fb2827fdc1b93ae6ac7f53d\"\u003e\u003c/a\u003e工具","others"],"sub_categories":["\u003ca id=\"32739127f0c38d61b14448c66a797098\"\u003e\u003c/a\u003e嗅探\u0026\u0026Sniff"],"readme":"\ndsniff-2.3\n----------\n\ni wrote these tools with honest intentions - to audit my own network,\nand to demonstrate the insecurity of cleartext / weakly-encrypted\nnetwork protocols and ad-hoc PKI. please do not abuse this software.\n\nthese programs require:\n\n      Berkeley DB - http://www.sleepycat.com/\n      OpenSSL - http://www.openssl.org/\n      libpcap - http://www.tcpdump.org/\n      libnids - http://www.packetfactory.net/Projects/Libnids/\n      libnet - http://www.packetfactory.net/Projects/Libnet/\n\nbuilt and tested on OpenBSD, Linux, and Solaris. YMMV.\n\nwhat's here:\n\narpspoof\n\tredirect packets from a target host (or all hosts) on the LAN\n\tintended for another local host by forging ARP replies. this\n\tis an extremely effective way of sniffing traffic on a switch.\n\tkernel IP forwarding (or a userland program which accomplishes\n\tthe same, e.g. fragrouter :-) must be turned on ahead of time.\n\ndnsspoof\n\tforge replies to arbitrary DNS address / pointer queries on\n\tthe LAN. this is useful in bypassing hostname-based access\n\tcontrols, or in implementing a variety of man-in-the-middle\n\tattacks (HTTP, HTTPS, SSH, Kerberos, etc).\n\ndsniff\n\tpassword sniffer. handles FTP, Telnet, SMTP, HTTP, POP,\n\tpoppass, NNTP, IMAP, SNMP, LDAP, Rlogin, RIP, OSPF, PPTP\n\tMS-CHAP, NFS, VRRP, YP/NIS, SOCKS, X11, CVS, IRC, AIM, ICQ,\n\tNapster, PostgreSQL, Meeting Maker, Citrix ICA, Symantec\n\tpcAnywhere, NAI Sniffer, Microsoft SMB, Oracle SQL*Net, Sybase\n\tand Microsoft SQL auth info.\n\n\tdsniff automatically detects and minimally parses each\n\tapplication protocol, only saving the interesting bits, and\n\tuses Berkeley DB as its output file format, only logging\n\tunique authentication attempts. full TCP/IP reassembly is\n\tprovided by libnids(3) (likewise for the following tools as\n\twell).\n\nfilesnarf\n\tsaves selected files sniffed from NFS traffic in the current\n\tworking directory.\n\nmacof\n\tflood the local network with random MAC addresses (causing\n\tsome switches to fail open in repeating mode, facilitating\n\tsniffing). a straight C port of the original Perl Net::RawIP\n\tmacof program.\n\nmailsnarf\n\ta fast and easy way to violate the Electronic Communications\n\tPrivacy Act of 1986 (18 USC 2701-2711), be careful. outputs\n\tselected messages sniffed from SMTP and POP traffic in Berkeley\n\tmbox format, suitable for offline browsing with your favorite\n\tmail reader (mail -f, pine, etc.).\n\nmsgsnarf\n\trecord selected messages from sniffed AOL Instant Messenger,\n\tICQ 2000, IRC, and Yahoo! Messenger chat sessions.\n\nsshmitm\n\tSSH monkey-in-the-middle. proxies and sniffs SSH traffic\n\tredirected by dnsspoof(8), capturing SSH password logins, and\n\toptionally hijacking interactive sessions. only SSH protocol\n\tversion 1 is (or ever will be) supported - this program is far\n\ttoo evil already.\n\nsshow\n\tSSH traffic analysis tool. analyzes encrypted SSH-1 and SSH-2\n\ttraffic, identifying authentication attempts, the lengths of\n\tpasswords entered in interactive sessions, and command line\n\tlengths.\n\ntcpkill\n\tkills specified in-progress TCP connections (useful for\n\tlibnids-based applications which require a full TCP 3-whs for\n\tTCB creation).\n\ntcpnice\n\tslow down specified TCP connections via \"active\" traffic\n\tshaping. forges tiny TCP window advertisements, and optionally\n\tICMP source quench replies.\n\nurlsnarf\n\toutput selected URLs sniffed from HTTP traffic in CLF\n\t(Common Log Format, used by almost all web servers), suitable\n\tfor offline post-processing with your favorite web log\n\tanalysis tool (analog, wwwstat, etc.).\n\nwebmitm\n\tHTTP / HTTPS monkey-in-the-middle. transparently proxies and\n\tsniffs web traffic redirected by dnsspoof(8), capturing most\n\t\"secure\" SSL-encrypted webmail logins and form submissions.\n\nwebspy\n\tsends URLs sniffed from a client to your local Netscape\n\tbrowser for display, updated in real-time (as the target\n\tsurfs, your browser surfs along with them, automagically).\n\ta fun party trick. :-)\n\n-d.\n\n---\nhttp://www.monkey.org/~dugsong/\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftecknicaltom%2Fdsniff","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftecknicaltom%2Fdsniff","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftecknicaltom%2Fdsniff/lists"}