如何截获包,并对包进行修改,再转发出去?分数高达1000分

shark_dim 2003-05-30 09:18:33
如题
如果成功的话,给1000分!分批给!
...全文
61 21 打赏 收藏 转发到动态 举报
写回复
用AI写文章
21 条回复
切换为时间正序
请发表友善的回复…
发表回复
888888888888 2003-06-13
  • 打赏
  • 举报
 回复
关注
constantine 2003-06-12
  • 打赏
  • 举报
 回复
帮你转一点有用的东东过来[来自chinabcb.com]

标题 使用VB在WIN2000下截获IP数据包 jyu1221(原作)

关键字 vb,win2000,tcp/ip,截获



作者:天同
QQ:19632995
MSN:jyu1221@hotmail.com
日期:2002.04.30

为了方便广大VB爱好者也能向C语言一样能截获IP包,本人特地写了以下的源代码,以供VB开发者参考。

以下是在VB中截获WIN2000下TCP/IP包的源代码,在VB6.0,win2000下测试通过,需要注意的地方是,1.必须和本地的一块网卡,2.每次获取数据后必须有一段延时。3.数据取到之后放在Buff的数组中。4.把以下的代码放在一个模块中就可以了。
'-----------------------------代码开始--------------------------------------------------
Declare Function bind Lib "ws2_32.dll" (ByVal s As Long, addr As SOCK_ADDR, ByVal namelen As Long) As Long
Declare Function closesocket Lib "ws2_32.dll" (ByVal s As Long) As Long
Declare Function connect Lib "ws2_32.dll" (ByVal s As Long, name As SOCK_ADDR, ByVal namelen As Integer) As Long
Declare Function inet_addr Lib "ws2_32.dll" (ByVal cp As String) As Long
Declare Function htons Lib "ws2_32.dll" (ByVal hostshort As Integer) As Integer
Declare Function recv Lib "ws2_32.dll" (ByVal s As Long, buffer As Any, ByVal length As Long, ByVal flags As Long) As Long
Declare Function send Lib "ws2_32.dll" (ByVal s As Long, buffer As Any, ByVal length As Long, ByVal flags As Long) As Long
Declare Function shutdown Lib "ws2_32.dll" (ByVal s As Long, ByVal how As Long) As Long
Declare Function ioctlsocket Lib "ws2_32.dll" (ByVal s As Long, ByVal v As Long, ut As Long) As Long
Declare Function socket Lib "ws2_32.dll" (ByVal af As Long, ByVal type_specification As Long, ByVal protocol As Long) As Long
Declare Function WSACancelBlockingCall Lib "ws2_32.dll" () As Long
Declare Function WSACleanup Lib "ws2_32.dll" () As Long
Declare Function WSAGetLastError Lib "ws2_32.dll" () As Long
Declare Function WSAStartup Lib "ws2_32.dll" (ByVal wVersionRequired As Integer, wsData As WSA_DATA) As Long
Declare Function WSASocketA Lib "ws2_32.dll" (ByVal af As Long, ByVal type1 As Long, ByVal protocol As Long, lpProtocolInfo As Long, g As Long, ByVal dwFlags As Long)
Declare Function WSAIoctl Lib "ws2_32.dll" (ByVal s As Long, ByVal dwIoControlCode As Long, lpvInBuffer As Long, ByVal cbInBuffer As Long, lpvOutBuffer As Long, ByVal cbOutBuffer As Long, lpcbBytesReturned As Long, lpOverlapped As Long, lpCompletionRoutine As Long) As Long


Declare Sub CopyMemory Lib "kernel32" Alias "RtlMoveMemory" (Destination As Any, Source As Any, ByVal length As Long)

Public Declare Sub Sleep Lib "kernel32" (ByVal dwMilliseconds As Long)

Public Const WSADESCRIPTION_LEN = 256
Public Const WSASYS_STATUS_LEN = 128

Type WSA_DATA
wVersion As Integer
wHighVersion As Integer
strDescription(WSADESCRIPTION_LEN + 1) As Byte
strSystemStatus(WSASYS_STATUS_LEN + 1) As Byte
iMaxSockets As Integer
iMaxUdpDg As Integer
lpVendorInfo As Long
End Type

Type IN_ADDR
S_addr As Long
End Type

Type SOCK_ADDR
sin_family As Integer
sin_port As Integer
sin_addr As IN_ADDR
sin_zero(0 To 7) As Byte
End Type


Type IPHeader
lenver As Byte
tos As Byte
len As Integer
ident As Integer
flags As Integer
ttl As Byte
proto As Byte
checksum As Integer
sourceIP As Long
destIP As Long
End Type

Const AF_INET = 2
Const SOCK_RAW = 3
Const IPPROTO_IP = 0
Const IPPROTO_TCP = 6
Const IPPROTO_UDP = 17
Const MAX_PACK_LEN = 65535
Const SOCKET_ERROR = -1&



Private mwsaData As WSA_DATA
Private m_hSocket As Long


Private msaLocalAddr As SOCK_ADDR

Private msaRemoteAddr As SOCK_ADDR


Sub Main()
Dim nResult As Long

nResult = WSAStartup(&H202, mwsaData)
If nResult <> WSANOERROR Then
MsgBox "Error en WSAStartup"
Exit Sub
End If

m_hSocket = socket(AF_INET, SOCK_RAW, IPPROTO_IP)
If (m_hSocket = INVALID_SOCKET) Then
MsgBox "Error in socket"
Exit Sub
End If


msaLocalAddr.sin_family = AF_INET
msaLocalAddr.sin_port = 0
msaLocalAddr.sin_addr.S_addr = inet_addr("192.168.1.125") '这里需要你自己的网卡的IP地址

nResult = bind(m_hSocket, msaLocalAddr, Len(msaLocalAddr))
If (nResult = SOCKET_ERROR) Then
MsgBox "Error in bind"
Exit Sub
End If

Dim InParamBuffer As Long
Dim BytesRet As Long
BytesRet = 0
InParamBuffer = 1


nResult = ioctlsocket(m_hSocket, &H98000001, 1)


If nResult <> 0 Then
MsgBox "ioctlsocket"
Exit Sub
End If


Dim strData As String
Dim nReceived As Long


'截获来的数据放在BUFF里面
Dim Buff(0 To MAX_PACK_LEN) As Byte
Dim IPH As IPHeader

Do Until False '这个例子里,一直获取
DoEvents
nResult = recv(m_hSocket, Buff(0), MAX_PACK_LEN, 0)
If nResult = SOCKET_ERROR Then
MsgBox "Error in RecvData::recv"
Exit Do
End If
CopyMemory IPH, Buff(0), Len(IPH) '为了访问方便
Select Case IPH.proto
Case IPPROTO_TCP
'frmHookTcpip.Text1.SelText = HexIp2DotIp(IPH.sourceIP)
'frmHookTcpip.Text1.SelText = " -----> "
'frmHookTcpip.Text1.SelText = HexIp2DotIp(IPH.destIP)
'frmHookTcpip.Text1.SelText = vbCrLf
Debug.Print HexIp2DotIp(IPH.sourceIP) & " -----> " & HexIp2DotIp(IPH.destIP)
End Select
Loop

nResult = shutdown(m_hSocket, 2)
nResult = closesocket(m_hSocket)
nResult = WSACancelBlockingCall
nResult = WSACleanup
End Sub


Function HexIp2DotIp(ByVal ip As Long) As String
Dim s As String, p1 As String, p2 As String, p3 As String, p4 As String
s = Right("00000000" & Hex(ip),
p1 = Val("&h" & Mid(s, 1, 2))
p2 = Val("&h" & Mid(s, 3, 2))
p3 = Val("&h" & Mid(s, 5, 2))
p4 = Val("&h" & Mid(s, 7, 2))
HexIp2DotIp = p4 & "." & p3 & "." & p2 & "." & p1
End Function
'-----------------------------代码结束--------------------------------------------------

这个问题我也很想知道,你解决了,告诉我,vb我不会。
constantine 2003-06-12
  • 打赏
  • 举报
 回复
http://www.s8s8.net
建议你去那里看看
BCBChina 2003-06-11
  • 打赏
  • 举报
 回复
up
warton 2003-06-11
  • 打赏
  • 举报
 回复
是xfilter的东西,为了不损害原作者,我只能提供这些了!:)
warton 2003-06-11
  • 打赏
  • 举报
 回复
我提供两个示例!
大家到:
ftp://218.20.188.29/ 
用户名:every
密码为空!


去下载吧!!(warton目录下!)
constantine 2003-06-10
  • 打赏
  • 举报
 回复
up
ensoniq 2003-06-10
  • 打赏
  • 举报
 回复
关注
shark_dim 2003-06-09
  • 打赏
  • 举报
 回复
up
GunRoses 2003-06-05
  • 打赏
  • 举报
 回复
SPI是Windows中的Service Provider Interface ,MSDN中有详细的文档和例子(spi.cpp)

一般截包有两种方式:UserSpace和KernelSpace
UseSpace:1.SPI,这是MS的公开API
2.Windows 2000 Packet Filtering Interface,其实是一个简单的包过滤firewall,只能在2K下用,估计不符合你的要求
3.替换ws2_32.dll
4.API Hooking ,hook ws2_32.dll中的函数
后两种是容易想到的方法
KernelSpace:我们有Kernel-mode sockets filter,TDI-filter driver, NDIS Intermediate
Driver,Windows 2000 Filter-Hook Driver NDIS Hooking Filter Driver,windows下的防火墙绝大部分都用了这些技术,需要driver的写作和kernel的了解,我就不多说了

一般上层程序员,如果要求不高的话,推荐使用SPI,需要提醒你的是,病毒和黑客程序可以直接操作TDI层,从而绕过你的SPI
wltom 2003-06-04
  • 打赏
  • 举报
 回复
怎么就没有反应了呢?二楼的.
SharpKing515 2003-06-04
  • 打赏
  • 举报
 回复
留下。。。SharpKing204@sohu.com
wangxiangsjz 2003-05-31
  • 打赏
  • 举报
 回复
我也想知道怎么做?wangxiangsjz@sina.com
tccsdn 2003-05-31
  • 打赏
  • 举报
 回复
我的油箱:tc163box@163.net
tccsdn 2003-05-31
  • 打赏
  • 举报
 回复
给我一个吧,谢谢了,
shark_dim 2003-05-30
  • 打赏
  • 举报
 回复
拒绝灌水!
wltom 2003-05-30
  • 打赏
  • 举报
 回复
wltom@genersoft.com


谢谢!!
yingyys 2003-05-30
  • 打赏
  • 举报
 回复
我也想要
shark_dim 2003-05-30
  • 打赏
  • 举报
 回复
spi?什么是spi,怎么用,到哪儿能查到资料?
shark_dim 2003-05-30
  • 打赏
  • 举报
 回复
哦,快!!!

wait for you .........
加载更多回复(1)
ssh框架搭建实例源码
本资源是一个最简单的一个ssh框架实例,含完整的代码(dao层有annotation和xml两种实现方式修改applicationContext.xml和hibernate.cfg.xml相应位置就可以切换),数据库ssh.sql文件,和所有的jar,运行于eclips...
【算法-贪心】问题
问题(Fractional Knapsack Problem)是一个经典的组合优化问题,通常用于描述在有限容量的背中如何选择物品以最大化总价值的问题。与 0/1 背问题不同,问题允许部选择物品,即可以选择物品的...
HCIE H12-266 考试备考指南
新版3.0 HCIE考试说明 HCIE RS LAB 新版考试括TS(60)、TAC(20)、论述题(20)、LAB(100),为上午场和下午场: 上午:09:00-12:00考试内容:TS、TAC 下午:12:20-18:00考试内容:LAB、论述题 论述题是两个大题...
android 抓 修改数据,微信跳一跳怎么用抓修改_改数据
这里给大家提供抓工具修改的教程,以及抓工具的安装,请大家仔细看教程,放心使用。如果玩家们觉得跳一跳玩起来很难,不想自己跳,可以看看下面的微信跳一跳辅助合集,里面含了各种版本的跳一跳辅助,总...
如何抓微信小程序修改数据
修改完成,当然,弄懂原理的话,操作起来就很简单,其他的抓工具一样可以进行。从上图中可以看到我们的是13,接下来是修改,在这条请教点击右键,选择数据重放->重放并编辑,修改后点击运行到完成...
网络及通讯开发

1,316

社区成员

8,873

社区内容

发帖
与我相关
我的任务
社区描述
C++ Builder 网络及通讯开发
社区管理员
  • 网络及通讯开发社区
加入社区
  • 近7日
  • 近30日
  • 至今

加载中

查看更多榜单
社区公告
暂无公告

试试用AI创作助手写篇文章吧

+ 用AI写文章