0.6.12

• Add support for DLT_LINUX_SLL2 packet capture format.
• Improve handling of TCP SYN packets with payload data.
• Fix crash in Py_InitializeEx during multi-threaded Python interpreter initialization.

0.6.11

minor source refactoring

0.6.10

Fix: Properly handle close_originator.

0.6.9

Fix idle.time.1 - Properly handle truncated connections.

0.6.8

Increase default concurrent streams to 16,384. Update libnids code for compatibility with the latest GCC release

0.6.8-dev~3

dev release

0.6.7

handle null timestamps in python handler result method

0.5.22

Using a space-separated ISO 8601-like format ("%Y-%m-%d %T") to enhance readability
Addition of microseconds.

0.5.19

Sometimes, justniffer does not capture traffic because it was primarily designed to measure the nature and timing of TCP connections. It might not have sufficient information to retrieve certain details without the 3-way handshake packets at the beginning of the connection (e.g., client IP/port, connection reuse, etc.).

However, in some cases, it can still be useful to trace traffic even without these precise details, so use it with an understanding of what you are obtaining.

Now you can use the flag -m or --capture-in-the-middle to enable capturing in the middle of a connection.

$ sudo justniffer -i eth0 -m -r -u

from deb:

sudo apt install ./justniffer_0.5.19_amd64.deb

v0.5.18

bash auto completion and tcpdump packet filter multitoken