- Real-time network traffic monitoring
- Port scan detection & threat alerts
- DNS query logging & analysis
- Protocol breakdown (TCP/UDP/ICMP)
- Connection tracking & statistics
- Cross-platform support (Windows/Linux/macOS)
- Customizable whitelists & thresholds
- Python 3.8+
- Npcap (Windows) / libpcap (Linux)
# Clone repository
git clone https://github.com/Goofisded/netsniff.git
cd netsniff
# Install dependencies
pip install -r requirements.txt# Install libpcap
sudo apt-get install libpcap-dev
# Run with privileges
sudo python3 netsniff.py -i eth0- Install Npcap
- Run Command Prompt as Admin:
python netsniff.py -i "Ethernet"Basic command structure:
sudo python3 netsniff.py -i [interface]Example with common interface names:
# Linux wireless interface
sudo python3 netsniff.py -i wlp2s0
# Windows Ethernet
python netsniff.py -i "Ethernet 2"Edit the CONFIG section in the code:
CONFIG = {
"CHECK_INTERVAL": 5, # Stats refresh rate (seconds)
"SCAN_THRESHOLD": 15, # SYN packets/min for alerts
"DNS_THRESHOLD": 50, # DNS queries/min limit
"WHITELISTED_IPS": [], # Trusted IP addresses
"LOG_FILE": "netsniff.log"# Log file path
}
- Fork the repository
- Create your feature branch:
git checkout -b feature/amazing-feature- Commit changes:
git commit -m 'Add amazing feature'- Push to branch:
git push origin feature/amazing-feature- Open a Pull Request
Distributed under MIT License. See LICENSE for more information.
Made with β€οΈ by Goofisded | π‘οΈ Happy Monitoring!