Justniffer (http://justniffer.sourceforge.net/) – A very cool little TCP sniffer specialized for capturing HTTP traffic.
Example invocations:
$ justniffer -i en1 -p "port 80" 10.64.168.204 - - [22/Dec/2011:11:45:03 -0800] "GET /wiki/Brew HTTP/1.1" 200 23163 "" "curl/7.19.7 (universal-apple-darwin10.0) libcurl/7.19.7 OpenSSL/0.9.8r zlib/1.2.3" $ justniffer-grab-http-traffic -d . -i en1 ... ^C ... $ tree . ├── bits.wikimedia.org/ │ ├── _w_extensions_1_18_OggHandler_OggPlayer_js_12index.js │ └── _w_extensions_1_18_OggHandler_play_pngindex.png ├── en.wikipedia.org/ │ ├── _w_index_php_title_Special_3ABannerListLoader_cache__cn_js_language_en_project_wikipedia_country_USindex.js │ ├── _wiki_Agile_software_developmentindex.html │ ├── _wiki_Kent_Beckindex.html │ └── _wiki_Martin_Fowlerindex.html ...
Any tips on how to deal with boost?
“please specify $BOOST_ROOT in your environment and do not give a PATH to –with-boost option”
Follow up:
Ridiculous. Absolutely ridiculous.
So I followed the Boost unix variants instructions, section 5.1.
The whole library. It took forever.
The justniffer build started with a:
sudo ./configure BOOST_ROOT=/usr/local/boost_1_49_0
and a make then a make install.
I’m still getting ERROR: BIOCSETIF: eth0: Device not configured.
I think it’s a mean prank for Mac users to waste their time.
Either that or you are REALLY good. Well, that AND you are really good.
Fifty compile attempts and a triple post!
But…
$ justniffer -i en1 -p “port 80”
actually produced output!
The faint of heart might want to stick with wireshark.