Network night vision
a protocol sniffer

Binary download

Win32 installer
You need to have Winpcap installed winpcap for live capturing.

Papers

We have written two papers on the technology of Network night vision,

• Secure Networking paper [Chaos Communication Congress 2006, Berlin, Germany]
• A Domain-Specific Language for manipulation of binary data in Dylan [International Lisp Conference 2007, Cambridge, UK]

Screen recordings

A screenshot of network night vision in action can be found here.
Two screen recordings of NNV 0.0.2 are available

• basic features (Flash, AVI, Quicktime) such as packet injection, IP stack, DHCP support and GTK windowing
• IEEE 802.11 (Flash, AVI, Quicktime) a.k.a. Wireless LAN

Public mailing list

There is a public mailing list, nnv-hackers@lists.h3q.com.
Feel free to ask questions, suggest new features or post your code there. You have to be subscribed to post.
To subscribe, write an empty mail to nnv-hackers-subscribe@lists.h3q.com and follow the instructions.

Source code

The source code is seperated into several libraries browsable via web:

• packetizer: domain-specific language and framework for binary protocol descriptions
• protocols: implemented protocols using packetizer
• flow, network-flow: flow graph implementation with several nodes already implemented
• network-interfaces: wrapper for receiving and transmitting ethernet frames with libpcap on FreeBSD and windows; as well as SOCK_RAW on linux
• sniffer: command-line network sniffer
• gui-sniffer: graphical sniffer, win32 only at the moment
• layer: protocol layering, not yet used in network night vision

Installation using source code

First, get a working opendylan compiler from here and follow the installation instructions.
Afterwards download recent source code via subversion:

• svn co svn://svn.gwydiondylan.org/scm/svn/dylan/trunk/fundev/sources
• svn co svn://svn.gwydiondylan.org/scm/svn/dylan/trunk/libraries

UNIX

Currently, only a command-line version of the sniffer is available.
On UNIX, set OPEN_DYLAN_USER_REGISTRIES environment variable to `pwd`/sources/registry:`pwd`/libraries/registry.
Then compile sniffer by typing opendylan -build sniffer. Afterwards you'll find a ~/Open-Dylan/bin/sniffer which has a -h option for help.

Windows

You'll need winpcap developer's pack.
On Windows, go to control panel, system, advanced, environment variables, and set OPEN_DYLAN_USER_REGISTRIES to c:\wherever-downloaded\sources\registry;c:\wherever-downloaded\libraries\registry.
Afterwards, start Open Dylan, choose Internal -> Open registry project and enter gui-sniffer.
Then you can build the application and run it in the IDE.