[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [linux_var] usb sniffer

To: talking@ml.linuxvar.it
Subject: Re: [linux_var] usb sniffer
From: Fernando Vezzosi <fv@repnz.net>
Date: Mon, 25 Jul 2011 16:19:36 +0200
In-reply-to: <CAEo5yiSFGuCcJ347QYi0-j6En+cib6D45BMvNyXo16-wqaaZ+A@mail.gmail.com>
List-archive: <http://ml.linuxvar.it/wws/arc/talking>
List-help: <mailto:sympa@ml.linuxvar.it?subject=help>
List-id: <talking.ml.linuxvar.it>
List-owner: <mailto:talking-request@ml.linuxvar.it>
List-post: <mailto:talking@ml.linuxvar.it>
List-subscribe: <mailto:sympa@ml.linuxvar.it?subject=subscribe%20talking>
List-unsubscribe: <mailto:sympa@ml.linuxvar.it?subject=unsubscribe%20talking>
References: <CAEo5yiSFGuCcJ347QYi0-j6En+cib6D45BMvNyXo16-wqaaZ+A@mail.gmail.com>
Reply-to: talking@ml.linuxvar.it
User-agent: Mutt/1.5.18 (2008-05-17)

On Mon, Jul 25, 2011 at 03:48:34PM +0200, Fox wrote:
> Ciao:)
> 
> qualcuno sa se esiste uno sniffer usb per linux che mi consenta di leggere i
> dati che passano ad esempio tra ps3 e periferica?

C'e` usbmon.

Esempio per sniffarmi il traffico della tastiera:

# mount -t debugfs none /sys/kernel/debug
# modprobe usbmon
# cd /sys/kernel/debug/usb
# cat devices
...
T:  Bus=01 Lev=03 Prnt=07 Port=01 Cnt=01 Dev#= 10 Spd=1.5  MxCh= 0
D:  Ver= 2.00 Cls=00(>ifc ) Sub=00 Prot=00 MxPS= 8 #Cfgs=  1
P:  Vendor=05ac ProdID=0220 Rev= 0.69
S:  Manufacturer=Apple, Inc
S:  Product=Apple Keyboard
...

La linea che inizia con "T:" indica il bus (in questo caso 1)

# cat usbmon/1u
root lembas 58# cat usbmon/1u
ffff8801149b9540 2794956722 C Ii:1:010:1 0:8 8 = 00000000 00000000
ffff8801149b9540 2794956838 S Ii:1:010:1 -115:8 8 <
ffff8801149b9540 2796404721 C Ii:1:010:1 0:8 8 = 80000000 00000000
ffff8801149b9540 2796404824 S Ii:1:010:1 -115:8 8 <
ffff8801149b9540 2796476692 C Ii:1:010:1 0:8 8 = 00000000 00000000
ffff8801149b9540 2796476809 S Ii:1:010:1 -115:8 8 <
ffff8801156c33c0 2798168726 C Ii:1:008:1 0:8 4 = 00ff0000
ffff8801156c33c0 2798168794 S Ii:1:008:1 -115:8 4 <
ffff8801156c33c0 2798176726 C Ii:1:008:1 0:8 4 = 00ff0000
ffff8801156c33c0 2798176798 S Ii:1:008:1 -115:8 4 <
ffff8801156c33c0 2798184717 C Ii:1:008:1 0:8 4 = 00fe0000
...

In realta` sul mio sistema ho visto che al bus 1 ci sta anche il mouse quindi
c'e` da scremare un po`, ma comunque i dati ci sono  :)

> ma parla di sta beagleboard... non so se e' applicabile ad un pc normale

Tirare dentro hardware mi pare overkill...

-- 
  Fernando Vezzosi    perl -E'$_="Pop Corn",s/\b\S(?{$0=$&^_^L})/$0/g,say'
         qw(MDAx MTAw MDEw MDEx MDAw _5 MTEw _6 _1 _5 _5 _4 _2 _2 _6
         MTEx _1 _5 _5 _4 _5 _2 _6 _1 _1 _2 _2 _3 _5 _5 _6 _1 _1 _2
         _5 _4 _3 _5 _2 _5 _1 _2 _3 _4 _5 MA==)

-- 
Per cancellare l'iscrizione: <talking-unsubscribe at ml.linuxvar.it>
Archivi web e configurazione: http://ml.linuxvar.it/ml/

Follow-Ups:
- Re: [linux_var] usb sniffer
  - From: Fox <root2fox@gmail.com>

References:
- [linux_var] usb sniffer
  - From: Fox <root2fox@gmail.com>

Prev by Date: Re: [linux_var] usb sniffer
Next by Date: Re: [linux_var] usb sniffer
Previous by thread: Re: [linux_var] usb sniffer
Next by thread: Re: [linux_var] usb sniffer
Index(es):
- Date
- Thread