Study And Implementation On Network Information Sniffing System Based On Winpcap

Posted on:2008-09-30

Degree:Master

Type:Thesis

Country:China

Candidate:Z W Liu

Full Text:PDF

GTID:2178360272968290

Subject:Computer system architecture

Abstract/Summary:

PDF Full Text Request

In the information society, information is the important resource for maintaining social, economic and production activities, and it has become the base of political, economic, social and cultural fields. Exploration methods and techniques for network information sniffing contributes to the establishment of a reliable and efficient network information security system, it also helps for maintaining social and political stability, as well as economic development..Aiming at specific requirement, the design principles of a Network Information Sniffing System Based on Winpcap (NISSBW) are explained, the system structure, work processes and function modules of the system are described in this paper. The techniques for extracting E-mail and Web are also implemented.NISSBW is composed of at least one data acquisition subsystem and one data extraction center, every data acquisition subsystem is placed on a different gateway, they can sniff several local area networks at the same time. The data extraction center is placed on a computer which runs on background. The data extraction center can serve for several data acquisition subsystems simultaneously. In order to improve the communication performance between the data acquisition subsystem and the data extraction center, five Winsock I/O models are discussed, the application protocol which is using for communication between the data acquisition subsystems and the data extraction center is proposed on the base of completion port.For sake of improving performance of NISSBW, the buffer model which is used for data transmission between threads is by the way of the memory buffer pool. The unit of this model is a data block which can cache many packets, the allocated data blocks are used to cache packets repeatedly and circularly, the expense of memory allocation and free has decreased, the probability of preempting the critical section also has a sharp decline, as a result, the performance of capturing and analyzing packets is improved accordingly. The system we have designed can sniff the web and E-mail, it can sniff several local area networks simultaneously, and the results indicate that the system can meet the requirement of practical application.

Keywords/Search Tags:

Packet Capture, Protocol Analysis, Reassemble, Web Extraction, Email Extraction

PDF Full Text Request

Related items

1	Research And Realize Of Network Monitoring Based On Data Packet Capture
2	The Study Of Internet Packet Recognition And Key Content Extraction
3	Development Of Email Precise Extraction And Targeted Mail Delivery System
4	Implementation Research On Web Information Extraction System Based On Network Packets
5	Research And Implementation Of Network Packet Capture System In 10 Gigabit Network
6	Principal Component Feature Extraction And Description From Noise Sequence Based On Wavelet Packet Analysis
7	Research On Feature Extraction Of Noises Radiated From Underwater Targets
8	Research On Network Communication Data Packet Capture And Analysis
9	A Research On The Filter Algorithm Of Spam Information Based On One-class SVM
10	Research Of High-Performance Packet Capture Mechanism In Linux Environment