- Real-time network traffic monitoring
- Port scan detection & threat alerts
- DNS query logging & analysis
- Protocol breakdown (TCP/UDP/ICMP)
- Connection tracking & statistics
- Cross-platform support (Windows/Linux/macOS)
- Customizable whitelists & thresholds
- Python 3.8+
- Npcap (Windows) / libpcap (Linux)
# Clone repository git clone https://github.com/Goofisded/netsniff.git cd netsniff # Install dependencies pip install -r requirements.txt# Install libpcap sudo apt-get install libpcap-dev # Run with privileges sudo python3 netsniff.py -i eth0- Install Npcap
- Run Command Prompt as Admin:
python netsniff.py -i "Ethernet"Basic command structure:
sudo python3 netsniff.py -i [interface]Example with common interface names:
# Linux wireless interface sudo python3 netsniff.py -i wlp2s0 # Windows Ethernet python netsniff.py -i "Ethernet 2"Edit the CONFIG section in the code:
CONFIG = { "CHECK_INTERVAL": 5, # Stats refresh rate (seconds) "SCAN_THRESHOLD": 15, # SYN packets/min for alerts "DNS_THRESHOLD": 50, # DNS queries/min limit "WHITELISTED_IPS": [], # Trusted IP addresses "LOG_FILE": "netsniff.log"# Log file path }
- Fork the repository
- Create your feature branch:
git checkout -b feature/amazing-feature- Commit changes:
git commit -m 'Add amazing feature'- Push to branch:
git push origin feature/amazing-feature- Open a Pull Request
Distributed under MIT License. See LICENSE for more information.
Made with ❤️ by Goofisded | 🛡️ Happy Monitoring!