Exemplo n.º 1
0
        /// <summary>
        /// Start the NMCapture engine to collect traffic data. The trace file handle must be provided.
        /// </summary>
        /// <param name="adapterIndex">index of the target adapter.</param>
        /// <returns></returns>
        public bool StartCapture(List <uint> adapters)
        {
            uint errno;

            try
            {
                foreach (uint adapterIndex in adapters)
                {
                    //Configure Adapter for capturing
                    errno = NetmonAPI.NmConfigAdapter(
                        this.captureEngineHandle,
                        adapterIndex,
                        CaptureCb,
                        this.captureFileHandle,
                        NmCaptureCallbackExitMode.DiscardRemainFrames);

                    if (errno != 0)
                    {
                        throw new Exception(FormatErrMsg("NmConfigAdapter() failed", errno));
                    }

                    errno = NetmonAPI.NmStartCapture(this.captureEngineHandle, adapterIndex, NmCaptureMode.LocalOnly);
                    if (errno != 0)
                    {
                        throw new Exception(FormatErrMsg("NmStartCapture() failed", errno));
                    }
                }

                return(true);
            }
            catch (Exception ex)
            {
                NetmonAPI.NmCloseHandle(this.captureEngineHandle);
                NetmonAPI.NmCloseHandle(this.captureFileHandle);
                this.captureEngineHandle = IntPtr.Zero;
                this.captureFileHandle   = IntPtr.Zero;

                ErrorMsg += ex.ToString();

                return(false);
            }
        }
Exemplo n.º 2
0
        public void Test()
        {
            bool             isElevated;
            WindowsIdentity  identity  = WindowsIdentity.GetCurrent();
            WindowsPrincipal principal = new WindowsPrincipal(identity);

            isElevated = principal.IsInRole(WindowsBuiltInRole.Administrator);

            Console.WriteLine($"Elevated permissions: {isElevated}");


            capHandler = new CaptureCallbackDelegate(CapHandlerCallback);
            uint ret;

            IntPtr myCapEng;

            ret = NetmonAPI.NmOpenCaptureEngine(out myCapEng);
            if (ret != 0)
            {
                Console.WriteLine("Error {0}\n", ret);
            }
            else
            {
                uint AdptCount;
                ret = NetmonAPI.NmGetAdapterCount(myCapEng, out AdptCount);
                if (ret != 0)
                {
                    NetmonAPI.NmCloseHandle(myCapEng);
                    Console.WriteLine("Error {0}\n", ret);
                }
                else
                {
                    // Creates a capture file which will store the last 10MB of traffic captured
                    ret = NetmonAPI.NmCreateCaptureFile(this.filename, 10000000, NmCaptureFileFlag.WrapAround, out this.capFile, out this.size);

                    if (ret != 0)
                    {
                        Console.Write("Error Creating File");
                    }

                    Console.WriteLine($"Adapters avalable: {AdptCount}");
                    for (uint i = 0; i < AdptCount; i++)
                    {
                        ret = NetmonAPI.NmConfigAdapter(myCapEng, i, capHandler, IntPtr.Zero, NmCaptureCallbackExitMode.ReturnRemainFrames);
                        if (ret != 0)
                        {
                            Console.WriteLine("Could not config {0}, error {1}", i, ret);
                        }
                        else
                        {
                            Console.WriteLine("Configured Adpt {0}", i);
                        }

                        ret = NetmonAPI.NmStartCapture(myCapEng, i, NmCaptureMode.Promiscuous);
                        if (ret != 0)
                        {
                            Console.WriteLine("Could not Start Capture on {0}, error {1}", i, ret);
                        }
                        else
                        {
                            Console.WriteLine("Started Adpt {0}", i);
                        }
                    }

                    System.Threading.Thread.Sleep(5000);

                    for (uint i = 0; i < AdptCount; i++)
                    {
                        ret = NetmonAPI.NmConfigAdapter(myCapEng, i, capHandler, IntPtr.Zero, NmCaptureCallbackExitMode.ReturnRemainFrames);
                        if (ret != 0)
                        {
                            Console.WriteLine("Could not config {0}, error {1}", i, ret);
                        }
                        else
                        {
                            Console.WriteLine("Configured Adpt {0}", i);
                        }
                        Console.WriteLine("Starting Adpt {0} again", i);

                        ret = NetmonAPI.NmStartCapture(myCapEng, i, NmCaptureMode.Promiscuous);
                        if (ret != 0)
                        {
                            Console.WriteLine("Could not Start Capture again on {0}, error {1}", i, ret);
                        }
                        else
                        {
                            Console.WriteLine("Started Adpt {0} again", i);
                        }
                    }

                    for (uint i = 0; i < AdptCount; i++)
                    {
                        ret = NetmonAPI.NmStopCapture(myCapEng, i);
                        if (ret != 0)
                        {
                            Console.WriteLine("Could not Stop Capture on {0}, error {1}", i, ret);
                        }
                        else
                        {
                            Console.WriteLine("Stopped Adpt {0}", i);
                        }
                    }
                }

                NetmonAPI.NmCloseHandle(myCapEng);
            }
        }