HexInject is a very versatile packet injector and sniffer, that provide a command-line framework for raw network access.
It’s designed to work together with others command-line utilities, and for this reason it facilitates the creation of powerful shell scripts capable of reading, intercepting and modifying network traffic in a transparent manner.
hexinject <mode> <options>
-s sniff mode -p inject mode -r raw mode (instead of the default hexadecimal mode) -f <filter> custom pcap filter -i <device> network device to use -F <file> pcap file to use as device (sniff mode only) -c <count> number of packets to capture -t <time> sleep time in microseconds (default 100) -I list all available network devices Injection options: -C disable automatic packet checksum -S disable automatic packet size Interface options: -P disable promiscuous mode -M put the wireless interface in monitor mode (experimental: use airmon-ng instead...) Other options: -h help screen
HexInject as Sniffer
cyborg@cyborg:~$ sudo hexinject -s -i eth0 -r | strings | grep 'Host:' Host:[FF02::C]:1900 Host:[FF02::C]:1900 Host:[FF02::C]:1900 Host:[FF02::C]:1900 Host:[FF02::C]:1900 Host: ocsp.digicert.com Host: ocsp.digicert.com Host:[FF02::C]:1900 Host: google.com
HexInject as Injector
cyborg@cyborg:~$ echo "01 02 03 04" | hexinject -p -i eth0