tags:

views:

92

answers:

1
Q: 

Network Packet Inspector in Mac OSX

I'm trying to create a network packet inspector.

I know you can do this with libpcap, but it's not a sniffer, i need to forge network packet, before it was sent on network. (sending via socks server)

I found 2 ways to do this :

  • Using an NKE. (Network Kernel Extension)
  • Using a DYLD_INSERT_LIBRARIES to insert a library to hook network function.

Which method do you think is the best ?

+1  A: 

Neither, use a tun/tap device: http://tuntaposx.sourceforge.net/

You'll need to route the traffic to that device, modify it, then send it back. You can do this with firewall rules. There are lots of examples of using tun/tap all over the open-source world, it isn't hard.

Advantage: it's a kernel extension, but a standard kernel extension, and therefore you don't need to worry about debugging it.

Andrew McGregor  2010-01-14 11:03:42
Thx for this, i didn't think about tun/tap driver. It's really cool because the application could be multi-plateform.
Zenithar  2010-01-14 12:28:30

related questions

Any pitfalls developing C#/.NET code in a Virtual Machine running on a MAC?
Height of NSTextView with one line?
What could prevent OpenGL glDrawPixels from working on some video cards?
What's a good machine for iPhone development?
MacPorts or Fink?
How to Stop NTFS volume auto-mounting on OS X
Any ReSharper equivalent for Xcode?
Rich GUI OS X Frameworks?
How do I open the default mail program with a Subject and Body in a cross-platform way?
Developer Setup for Starting Out with Cocoa/Mac Programming
Drawing a view hierachy into a specific context in Cocoa
Why is the PyObjC documentation so bad?
_wfopen equivalent under Mac OS X
Reading Other Process' Memory in Mac OS / BSD
better command for Windows?
Keep Remote Directory Up-to-date
How do I configure a Vista Ultimate (64bit) account so it can access a SMB share on OSX?
Programmatically talking to a Serial Port in OS X or Linux
I have some RAM to burn - any suggestions?
SQL Client for Mac OS X that works with MS SQL Server
How to tab between buttons on an Mac OS X dialog box
How to tab focus onto a dropdown field in Mac OSX
How-to articles for iPhone development, Objective-C
What are the preferred versions of Vim and Emacs on Mac OS X?
Best subversion client for Mac OS