-
Notifications
You must be signed in to change notification settings - Fork 6
/
Copy pathNetworkPacketDumper.cpp
116 lines (103 loc) · 3.32 KB
/
NetworkPacketDumper.cpp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
#include "NetworkPacketDumper.h"
NetworkPacketDumper::NetworkPacketDumper(void)
{
monitorRunning = false;
driverInstalled = false;
char errbuf[PCAP_ERRBUF_SIZE];
pcap_if_t *allDevices;
pcap_if_t *device;
hModWinPcap = LoadLibrary(L"wpcap.dll");
if(hModWinPcap == NULL)
{
printf("NetworkPacketDumper: ERROR - wpcap.dll not found. Check that winpcap is installed on this system\n");
} else {
pfn_pcap_findalldevs = (pcap_findalldevs_c)GetProcAddress(hModWinPcap, "pcap_findalldevs");
pfn_pcap_open_live = (pcap_open_live_c)GetProcAddress(hModWinPcap, "pcap_open_live");
pfn_pcap_close = (pcap_close_c)GetProcAddress(hModWinPcap, "pcap_close");
pfn_pcap_dump_open = (pcap_dump_open_c)GetProcAddress(hModWinPcap, "pcap_dump_open");
pfn_pcap_freealldevs = (pcap_freealldevs_c)GetProcAddress(hModWinPcap, "pcap_freealldevs");
pfn_pcap_dump_close = (pcap_dump_close_c)GetProcAddress(hModWinPcap, "pcap_dump_close");
pfn_pcap_next_ex = (pcap_next_ex_c)GetProcAddress(hModWinPcap, "pcap_next_ex");
pfn_pcap_dump = (pcap_dump_c)GetProcAddress(hModWinPcap, "pcap_dump");
if(pfn_pcap_findalldevs != NULL || pfn_pcap_open_live != NULL || pfn_pcap_close != NULL ||
pfn_pcap_dump_open != NULL || pfn_pcap_freealldevs != NULL || pfn_pcap_dump_close != NULL ||
pfn_pcap_next_ex != NULL || pfn_pcap_dump != NULL )
{
driverInstalled = true;
} else {
printf("NetworkPacketDumper: ERROR - incorrect version of wpcap.dll. Check the correct version of winpcap installed\n");
}
}
if(driverInstalled)
{
if(pfn_pcap_findalldevs(&allDevices, errbuf) == -1)
{
fprintf(stderr,"error in pcap_findalldevs: %s\n", errbuf);
} else {
printf("Loading network packet dumper\n");
}
for(device = allDevices; device; device = device->next)
{
if(device->name != NULL)
{
pcap_t *fp;
if ((fp = pfn_pcap_open_live(device->name, 65536, 0, 1000, errbuf)) == NULL)
{
printf("\terror could not open network adapter\n");
} else {
/* Only start capturing packets for network adapters that have ip addresses */
for(pcap_addr_t* a = device->addresses; a; a = a->next)
{
if(a->addr->sa_family == AF_INET)
{
if (a->addr)
{
char * address = inet_ntoa(((struct sockaddr_in *)a->addr)->sin_addr);
printf("\tnetwork adapter found: %s\n", address);
NetworkAdapter* networkAdapter = new NetworkAdapter(this,address, fp);
adapterList.push_back(networkAdapter);
}
}
}
}
}
}
pfn_pcap_freealldevs(allDevices);
}
}
NetworkPacketDumper::~NetworkPacketDumper(void)
{
stop();
std::list<NetworkAdapter*>::iterator it;
for(it = adapterList.begin(); it != adapterList.end(); it++)
{
delete *it;
}
FreeLibrary(hModWinPcap);
}
void
NetworkPacketDumper::start()
{
if(!isMonitorRunning() && isDriverInstalled())
{
std::list<NetworkAdapter*>::iterator it;
for(it = adapterList.begin(); it != adapterList.end(); it++)
{
(*it)->start();
}
monitorRunning = true;
}
}
void
NetworkPacketDumper::stop()
{
if(isMonitorRunning() && isDriverInstalled())
{
std::list<NetworkAdapter*>::iterator it;
for(it = adapterList.begin(); it != adapterList.end(); it++)
{
(*it)->stop();
}
monitorRunning = false;
}
}