Scribd
Upload
8 views

intern python task

This document contains a Python script that captures and analyzes network traffic using raw sockets. It unpacks Ethernet frames, IPv4 packets, and various transport layer segments (TCP, UDP, ICMP) to display relevant information. The script continuously listens for incoming packets and processes them accordingly, providing details such as source and destination addresses, protocol types, and port numbers.

Uploaded by

casopo8594
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
8 views

intern python task

This document contains a Python script that captures and analyzes network traffic using raw sockets. It unpacks Ethernet frames, IPv4 packets, and various transport layer segments (TCP, UDP, ICMP) to display relevant information. The script continuously listens for incoming packets and processes them accordingly, providing details such as source and destination addresses, protocol types, and port numbers.

Uploaded by

casopo8594
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

import socket

import struct
import textwrap

def main():
# Create a raw socket to capture network traffic
conn = socket.socket(socket.AF_PACKET, socket.SOCK_RAW, socket.ntohs(3))

while True:
raw_data, addr = conn.recvfrom(65536)
dest_mac, src_mac, eth_proto, data = ethernet_frame(raw_data)
print("\nEthernet Frame:")
print(f"Destination: {dest_mac}, Source: {src_mac}, Protocol: {eth_proto}")

# If IPv4, process the packet further


if eth_proto == 8:
(version, header_length, ttl, proto, src, target, data) =
ipv4_packet(data)
print(f"IPv4 Packet:")
print(f"Version: {version}, Header Length: {header_length}, TTL:
{ttl}")
print(f"Protocol: {proto}, Source: {src}, Target: {target}")

# If TCP, process TCP segment


if proto == 6:
(src_port, dest_port, sequence, acknowledgment, flags, data) =
tcp_segment(data)
print("TCP Segment:")
print(f"Source Port: {src_port}, Destination Port: {dest_port}")
print(f"Sequence: {sequence}, Acknowledgment: {acknowledgment}")
print(f"Flags: {flags}")

# If UDP, process UDP segment


elif proto == 17:
src_port, dest_port, length, data = udp_segment(data)
print("UDP Segment:")
print(f"Source Port: {src_port}, Destination Port: {dest_port},
Length: {length}")

# If ICMP, process ICMP packet


elif proto == 1:
icmp_type, code, checksum, data = icmp_packet(data)
print("ICMP Packet:")
print(f"Type: {icmp_type}, Code: {code}, Checksum: {checksum}")

else:
print("Other IPv4 Data:")
print(format_multi_line(data))

# Unpack Ethernet frame


def ethernet_frame(data):
dest_mac, src_mac, proto = struct.unpack('! 6s 6s H', data[:14])
return get_mac_addr(dest_mac), get_mac_addr(src_mac), socket.htons(proto),
data[14:]

# Format MAC address

def get_mac_addr(bytes_addr):
bytes_str = map('{:02x}'.format, bytes_addr)
return ':'.join(bytes_str).upper()

# Unpack IPv4 packet


def ipv4_packet(data):
version_header_length = data[0]
version = version_header_length >> 4
header_length = (version_header_length & 15) * 4
ttl, proto, src, target = struct.unpack('! 8x B B 2x 4s 4s', data[:20])
return version, header_length, ttl, proto, ipv4(src), ipv4(target),
data[header_length:]

# Format IPv4 address

def ipv4(addr):
return '.'.join(map(str, addr))

# Unpack ICMP packet


def icmp_packet(data):
icmp_type, code, checksum = struct.unpack('! B B H', data[:4])
return icmp_type, code, checksum, data[4:]

# Unpack TCP segment


def tcp_segment(data):
(src_port, dest_port, sequence, acknowledgment, offset_reserved_flags) =
struct.unpack('! H H L L H', data[:14])
offset = (offset_reserved_flags >> 12) * 4
flags = offset_reserved_flags & 0xFFF
return src_port, dest_port, sequence, acknowledgment, flags, data[offset:]

# Unpack UDP segment


def udp_segment(data):
src_port, dest_port, size = struct.unpack('! H H 2x H', data[:8])
return src_port, dest_port, size, data[8:]

# Format multi-line data for readability


def format_multi_line(data, size=80):
return '\n'.join(textwrap.wrap(' '.join(f'{byte:02x}' for byte in data), size))

if __name__ == "__main__":
main()

You might also like