Changelog netsniff-ng v0.6.2:
1. Many improvements to the trafgen protocol generation functions, e.g. the ability to increment/randomize protocol fields at runtime using dinc()/rnd(), new functions to generate IPv6, ICMPv4/v6, PFC, and IEEE 802.3X PAUSE headers. From Vadim Kochan and Tobias Klauser.
2. flowtop UI improvements. From Vadim Kochan.
3. Packet counting fixes, e.g. to not account for duplicate packets received over the loopüback interface. From Paolo Abeni.
4. Allow IPv6 ranges to be specified for source and dest addresses in mausezahn. From Tommy Beadle.
5. Build system improvements, allowing to specify more options to the configure script. See ‘./configure –help’ for details. From Vadim Kochan and Tobias Klauser.
6. Various compilation fixes, e.g. for warnings or build failure certain systems. From Yousong Zhou and arch3y.
7. Various documentation improvements and fixes. From Vadim Kochan, Hisao Tanabe, and Tobias Klauser.
netsniff-ng is a free, performant Linux network analyzer networking toolkit. If you will, the Swiss army knife for network packets.
The netsniff-ng toolkit’s primary usage goal is to facilitate a network developer’s / hacker’s daily Linux plumbing. It can be used for network development, debugging, analysis, auditing or network reconnaissance. It consists of the following fixed set of utilities:
* netsniff-ng: a zero-copy packet analyzer, pcap capturing/replaying tool
* trafgen: a multithreaded low-level zero-copy network packet generator
* mausezahn [*]: high-level packet generator for appliances with Cisco-CLI
* ifpps: a top-like kernel networking and system statistics tool
* curvetun [*]: a lightweight curve25519-based multiuser IP tunnel
* astraceroute: an autonomous system trace route and DPI testing utility
* flowtop: a top-like netfilter connection tracking tool
* bpfc: a [seccomp-]BPF (Berkeley packet filter) compiler, JIT disassembler
Note that tools marked with [*] should be considered as experimental for now, and not used in production environments as they still need more work to be fully stable and in line with others. You have been warned!
Download and Build From Source:
One-liner installation for *all* dependencies on Debian:
$ sudo apt-get install ccache flex bison libnl-3-dev \
libnl-genl-3-dev libnl-route-3-dev libgeoip-dev \
libnetfilter-conntrack-dev libncurses5-dev liburcu-dev \
libnacl-dev libpcap-dev zlib1g-dev libcli-dev libnet1-dev
One-liner installation for *all* dependencies on Fedora:
$ sudo yum install ccache flex bison ccache libnl3-devel \
GeoIP-devel libnetfilter_conntrack-devel ncurses-devel \
userspace-rcu-devel nacl-devel libpcap-devel zlib-devel \
git clone https://github.com/netsniff-ng/netsniff-ng && cd netsniff-ng