CodeCow/PCAPdroid
1
0
Fork 0
mirror of https://github.com/emanuele-f/PCAPdroid.git synced 2026-06-05 21:04:28 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,567 Commits 6 Branches 72 Tags 24 MiB
master
Commit Graph

1567 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
emanuele-f
2cfd5d7a6e Remove unused strings 2025-03-03 16:45:35 +01:00
emanuele-f
762b9a086a Update what's new 2025-03-03 16:30:48 +01:00
emanuele-f
fe6b8aa5ae Add Azerbaijani, Tamil and Polish languages to production 2025-03-01 12:17:44 +01:00
jonnysemon
08fc2acba2 Update Arabic strings 2025-03-01 12:12:59 +01:00
Emanuele Faranda
8585711f57 Update Italian strings 2025-03-01 12:11:25 +01:00
appTaxi
9cb75aefd4 Update Italian strings 2025-03-01 12:11:21 +01:00
大王叫我来巡山
abef7ed096 Update Chinese (Simplified Han script) strings 2025-03-01 12:09:47 +01:00
RyoidenshiAokigahara
3ff8e59aee Update Russian strings 2025-03-01 12:09:06 +01:00
odkate918c013d81c448ce
3a17f1c420 Update Ukrainian strings 2025-03-01 12:08:03 +01:00
Jamil Farajov
068e408641 Add Azerbaijani translation 2025-03-01 12:06:09 +01:00
தமிழ்நேரம்
df61cec4dc Add Tamil translation 2025-03-01 12:04:46 +01:00
Mario Herrmann
36405c2159 Update German strings 2025-03-01 12:02:52 +01:00
Ettore Atalan
4d77cb9aa8 Update German strings 2025-03-01 12:02:40 +01:00
Mario Herrmann
5d741acef6 Update German strings 2025-03-01 12:00:47 +01:00
emanuele-f
46be01cdde Improve bytes threshold filter
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details 
Change label and recalculate size on connections removal
 2025-02-20 12:52:32 +01:00
emanuele-f
198f35778b Add info icon to help user understand DNS/TLS 2025-02-20 12:07:31 +01:00
emanuele-f
529ef639b6 Show detailed error for failed connections in VPN mode 
Also change such errors colors from red to orange, as they
are normal during a capture.

Closes #441
 2025-02-20 10:52:33 +01:00
emanuele-f
18adc58124 Update dependencies
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details
2025-02-17 19:05:20 +01:00
Emanuele Faranda
315301e6d3
Merge pull request #489 from emanuele-f/pcap-decryption 
Add ability to decrypt PCAP/Pcapng files
 2025-02-17 18:58:45 +01:00
emanuele-f
8f0c52e7cc Improve pcap decryption-related licenses
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details
2025-02-17 18:48:56 +01:00
emanuele-f
3b482850b0 Update the workflows to only build the standard apk 2025-02-17 18:48:52 +01:00
emanuele-f
7988c2ee4f Rename build flavors 2025-02-17 18:39:24 +01:00
emanuele-f
0ca5ff01bf Enable minify to reduce apk size
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details
2025-02-16 11:44:04 +01:00
emanuele-f
7899906b60 Use build flavors to make ushark optional 2025-02-16 11:16:04 +01:00
emanuele-f
b7a574d9bc Separate Wireshark-related licenses 2025-02-16 09:32:08 +01:00
emanuele-f
faf94e25b4 Allow decrypting PCAPNG without IAB purchase 2025-02-16 08:43:43 +01:00
emanuele-f
f6a4c9f933 Temporary enable full payload when decrypting files 
This is needed to properly show the decrypted status and data

See #351
 2025-02-16 08:43:43 +01:00
emanuele-f
53698918ca Fix keylog being asked with Pcapng file 
On newer Android versions, the uri does not contain the ".pcapng" extension

See #351
 2025-02-16 08:43:43 +01:00
emanuele-f
ee6b5569fa Fix tests 2025-02-16 08:43:43 +01:00
emanuele-f
1d89de51dc Add ability to decrypt PCAP/Pcapng files 
A new "Decrypt PCAP file" entry has been added to the main menu,
which allows loading a PCAP+keylog or a Pcapng with secrets and
show the decrypted data in PCAPdroud.

The decryption itself is performed by Wireshark, which is built as
the standalone shared library libushark.so, thanks to ushark.

The shared library is loaded via dlopen to allow proper
re-initialization of the static variables in Wireshark. This also
provides the benefit to avoud unnecessary overhead and possible
inteferences when not used.

HTTP/2 reassembly is properly supported (implemented in ushark)
and content decoding works as expected.

See #351
 2025-02-16 08:43:39 +01:00
Emanuele Faranda
e3eef2cbf7
Merge pull request #487 from pic4xiu/master
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details 
Fix -q parameter not being parsed in pcapd
 2025-02-14 11:08:50 +01:00
pikachu
4026145ac1
Fixed the bug that the -q parameter cannot take effect 2025-02-14 14:43:21 +08:00
emanuele-f
da1c8ab93b Fix crash due to non-serializable ArraySet
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details 
Restore HashSet in CaptureSettings
 2025-02-09 19:09:26 +01:00
emanuele-f
79f0f88600 Replace HashSet with ArraySet 
Closes #401
 2025-02-09 18:55:18 +01:00
emanuele-f
253e5119e1 Further reduce blacklists RAM usage 
Turn the sparsehash into a set, remove dense functions, load/save
to disk and make the data structure insert-only
 2025-02-09 17:51:33 +01:00
emanuele-f
94d13885bb Reduce blacklists RAM usage and increase limit to 1500k rules 
sparsehash is now used to reduce memory usage of malware blacklists.
uthash introduces a 56 bytes overhead per-item (UT_hash_handle).
sparsehash, on the other, hand, only has ~16 bytes of overhead (HTItem).
This can also be further reduced. With 400k rules, this currently
provides a 25 MB reduced usage. Lookup performance is also similar
to uthash.
 2025-02-09 17:51:24 +01:00
emanuele-f
a73b0bc1cf Remove SSLBL and Feodo blacklists 
SSLBL is deprecated and Feodo is usually contained in Emerging Threats
 2025-01-30 19:51:26 +01:00
emanuele-f
832325c42d Improve malicious connection reporting
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details 
See #440
 2025-01-30 19:22:31 +01:00
emanuele-f
606b7252b0 Ability to filter connections by min size
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details 
Closes #451
 2025-01-18 12:58:41 +01:00
emanuele-f
dad96c7ac4 Fix CIDR not cleared
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details
2025-01-14 13:35:06 +01:00
emanuele-f
9d9d736660 Implement CIDR support 
It's now possible to specify IP addresses in the CIDR format
for rules. This allows to block by CIDR

Closes #365
 2025-01-14 13:24:03 +01:00
emanuele-f
ffe9259361 Show country flag in rules list 2025-01-12 17:31:20 +01:00
emanuele-f
365c553076 Add firewall block by country 
It's now possible to block connections by country

Closes #429
 2025-01-12 17:18:10 +01:00
emanuele-f
0f47d378b9 Read PCAPdroid extensions metadata from Pcapng
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details 
A PCAP/Pcapng reader has been implemented to support parsing the
PCAPdroid extensions metadata. This allows displaying a number of
information in the UI when loading from a Pcapng file, in particular:

- when the dump was generated with root, show the capture interface
  name
- show the UID (app) related to a given connection
- if the dump contains UIDs of uninstalled apps, show the
  original package name and app name

Closes #479
 2025-01-11 19:58:58 +01:00
emanuele-f
e5259add68 Don't load malware/firewall lists when reading from file 2025-01-05 11:47:33 +01:00
emanuele-f
b9c18f02c6 Compilation fix
Some checks failed
Debug build / build (push) Has been cancelled
Details
Validate Gradle Wrapper / Validation (push) Has been cancelled
Details
Test native code / test (push) Has been cancelled
Details
Windows build / build (push) Has been cancelled
Details
2025-01-04 19:06:25 +01:00
emanuele-f
ba7df0e487 Compilation fix 2025-01-04 19:01:30 +01:00
emanuele-f
222d44e70a Dump capture interface via the Pcapng IDB 
When capturing as root, the interface name and incremental id are
now correctly reported in the Pcapng file

Closes #438
 2025-01-04 18:53:42 +01:00
emanuele-f
4f7b7a7a2e Fix string case 2025-01-04 17:33:45 +01:00
emanuele-f
a6d7df239a Remove unused trailer-related strings 2025-01-04 17:24:08 +01:00