Home
Log in

Articles tagged #ethernet

Crafting ARP packets to find a remote host's MAC address
Dec 12, 2019
clock icon 35 min #networking · #rust · #win32 · #ffi · #arp · #ethernet · #parsing

Alright. ALRIGHT. I know, we're all excited, but let's think about what we're doing again.

So we've managed to look at real network traffic and parse it completely. We've also taken some ICMP packets, parsed them, and then serialized them right back and we got the exact same result.

So I know what you're thinking - let's just move our way down the stack again - stuff that ICMP packet in an IP packet, then in an Ethernet frame, and then serialize the whole thing.

Read more
Consuming Ethernet frames with the nom crate
Nov 05, 2019
clock icon 43 min #networking · #ethernet · #rust · #assembly · #parsing

Now that we've found the best way to find the "default network interface"... what can we do with that interface?

Well, listen for network traffic of course!

Rust code
use rawsock::open_best_library;
use std::time::Instant;

fn main() -> Result<(), Error> {
    let lib = open_best_library()?;

    let iface_name = format!(r#"\Device\NPF_{}"# netinfodefault_nic_guid?
     iface = libiface_name?

    

    
     start = 
    iface |packet| 
        
            
            startelapsed
            packetlen
        
    ?
Read more

Go back to the homepage.