How to make a program like Wireshark to work with the network and preferably with traffic editing?

S

SKEPTIC2020-01-01 23:09:01

Computer networks

SKEPTIC, 2020-01-01 23:09:01

I want to make a program like Wireshark to work with the network and the ability to edit traffic. How can this be implemented? What is the best language to write this in? How can a program listen to traffic in general? I understand that it is a long time to explain. Explain briefly and throw a few links to articles or books.
In my view, the work of the program with the network is to create a socket and work with it. I don’t know anything else) I wrote chats a couple of times. Yes, and read a few texts about protocols, about the OSI model.

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

S

Saboteur, 2020-01-02
@saboteur_kiev

Well, if you want to do it, learn and do it.
Study the internals of the operating system, namely the network stack and how it is implemented.
The language for this is best C ++
It would just be nice if you, in principle, already knew how to write something simpler to begin with.

C

CityCat4, 2020-01-02
@CityCat4

Editing traffic is not possible :) tcpdump/wireshark removes traffic in parallel with sending it to the network, and does not wrap itself.
In addition, many protocols have integrity protection and a change in the packet will simply cause it to be discarded as corrupted in transit.
Have you already read the oilers?

W

Wexter, 2020-01-01
@Wexter

I want to make a program like Wireshark to work with the network and the ability to edit traffic.

tcpdump+iptables?