Thread Tools
Posts: 1,138 | Thanked: 1,818 times | Joined on Feb 2011 @ The Netherlands
What is NGrep?

ngrep strives to provide most of GNU grep's common features, applying them to the network layer. ngrep is a pcap-aware tool that will allow you to specify extended regular or hexadecimal expressions to match against data payloads of packets. It currently recognizes IPv4/6, TCP, UDP, ICMPv4/6, IGMP and Raw across Ethernet, PPP, SLIP, FDDI, Token Ring and null interfaces, and understands BPF filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop.

I compiled it from source and packaged it for maemo, that means it IS optified.

Know issues
It uses wmaster0 as default libpcap interface but our case the wlan0 interface is more interesting
This can be solved by using ngrep -d wlan0

I did not test this thoroughly but it seems to be working fine. That means, compiled without errors and it seemed to work when issuing ngrep -d wlan0

Use at your own risk

it depends on libpcap so install it first
apt-get install libpcap0.8
dpkg -i ngrep1.4.5maemo1.deb
Attached Files
File Type: deb ngrep-1.4.5maemo1_armel.deb (23.8 KB, 347 views)
N900 loaded with:
CSSU-T (Thumb)
720p recording,
Pierogi, Lanterne, Cooktimer, Frogatto
N9 16GB loaded with:
[TCPdump & libpcap | ngrep]

Last edited by mr_pingu; 2012-10-19 at 20:03.

The Following 18 Users Say Thank You to mr_pingu For This Useful Post:

Thread Tools

Forum Jump

All times are GMT. The time now is 09:00.