# Packet Sniffer
---
This Jupyter Notebook demonstrates a packet sniffer application using the `scapy` library.
The application captures and analyzes network packets, displaying information about each packet.
A disclaimer is also provided to emphasize the educational purpose of the tool.

## Import Libraries

In [1]:
import time
from scapy.all import sniff, IP, TCP, UDP, ICMP, Raw

## Define Packet Sniffer Functions
### Packet Callback Function
The `packet_callback` function processes each packet captured, extracting and displaying relevant information.

In [2]:
# Initialize a counter for packet indexing
packet_counter = 0

# This function is called for each packet captured
def packet_callback(packet):
    global packet_counter
    packet_counter += 1
    
    # Check if the packet has an IP layer
    if IP in packet:
        ip_layer = packet[IP]
        
        # Initialize an empty list to store the packet information
        packet_info = [f"Packet #{packet_counter}"]  # Add packet index
        
        # Add source and destination IP addresses
        packet_info.append(f"Source IP: {ip_layer.src}")
        packet_info.append(f"Destination IP: {ip_layer.dst}")
        
        # Check if the packet has a TCP layer
        if TCP in packet:
            tcp_layer = packet[TCP]
            packet_info.append("Protocol: TCP")
            packet_info.append(f"Source Port: {tcp_layer.sport}")
            packet_info.append(f"Destination Port: {tcp_layer.dport}")
        
        # Check if the packet has a UDP layer
        elif UDP in packet:
            udp_layer = packet[UDP]
            packet_info.append("Protocol: UDP")
            packet_info.append(f"Source Port: {udp_layer.sport}")
            packet_info.append(f"Destination Port: {udp_layer.dport}")
        
        # Check if the packet has an ICMP layer
        elif ICMP in packet:
            packet_info.append("Protocol: ICMP")
        
        # Check if the packet has a Raw layer (payload data)
        if Raw in packet:
            packet_info.append(f"Payload: {packet[Raw].load}")
        
        # Print the packet information with a separator
        print("\n".join(packet_info))
        print("-" * 50)  # Separator line
        
        # Delay to slow down the output
        time.sleep(1)

## Disclaimer
The `disclaimer` function prints a disclaimer for the user.

In [3]:
# This function prints a disclaimer
def disclaimer():
    print("This tool is for educational purposes only. Unauthorized use is prohibited.")

# Print the disclaimer
disclaimer()

## Start Packet Sniffing
The `sniff` function starts capturing packets and calls `packet_callback` for each packet captured.

In [4]:
# Start capturing packets and call packet_callback for each packet captured
sniff(prn=packet_callback, count=0)

## Usage Instructions
### Downloading and Running the Code
1. **Install Git:** If you don't have Git installed, download and install it from [git-scm.com](https://git-scm.com/).
2. **Clone the Repository:**
   - Open a terminal or command prompt.
   - Navigate to the directory where you want to clone the repository.
   - Run the following command to clone the repository:
     ```sh
     git clone https://github.com/muhammad-tarrab/Tarrab-Cybersecurity-Portfolio.git
     ```
3. **Navigate to the Cloned Repository:**
   ```sh
   cd Tarrab-Cybersecurity-Portfolio/Python-Tools
   ```
4. **Run the Script:**
   - Ensure you have the required libraries installed. You can install them using pip:
     ```sh
     pip install scapy
     ```
   - Run the Jupyter Notebook:
     ```sh
     jupyter notebook Packet_Sniffer.ipynb
     ```
5. **Follow the Prompts:** The notebook will automatically capture and display packet information.