Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
if __name__ == "__main__":
# args parser
parser = argparse.ArgumentParser(description='Packet communications investigator')
parser.add_argument("-f", '--file',
help='directory to clean if not declared use of current dir',
action='store', dest='filepath')
parser.add_argument("-i", "--interface", help="chose interface", action="store", dest='interface')
parser.add_argument("-r", "--ring", help="activate ring buffer", action="store_true",
default=False)
args = parser.parse_args()
# live ring capture
if args.ring:
logger.info("Starting Live Ring Capture on " + args.interface)
cap = pyshark.LiveRingCapture(interface=args.interface, only_summaries=True, ring_file_size=4096,
num_ring_files=50, ring_file_name='./db/pcap/pci.pcapng')
packet_analysis_live(cap)
# live capture
elif args.interface:
logger.info("Starting Live Capture on " + args.interface)
cap = pyshark.LiveCapture(interface=args.interface, only_summaries=True)
packet_analysis_live(cap)
# pcap
elif args.filepath:
logger.info("Starting pcap analysis on " + args.filepath)
cap = pyshark.FileCapture(input_file=args.filepath, only_summaries=True)
packet_analysis(cap)
else:
parser.print_help()