The goal of this project is to create a monitor of Wi-Fi traffic. Using this traffic we will attempt to track and analyze relative location of wireless devices to the monitor.
To achieve this, the Wireless Proximity Monitor (WPM) tool will use the following information:

• MAC address
• Timestamp
• Signal Strength Ultimately, this information will be used to create a log of the devices that were a certain distance away from the monitor at a particular time. This data may then be parsed via display and capture filters to find information for various personal uses.

This tool was created for the Unix Forensics course at Rochester Institute of Technology. After the end of the semester this tool is unlikely to be receive further development.

• libpcap-1.5.3
• gtkmm-3.0-dev

1. Include all appropriate .cpp and .h files in the same directory.
2. Compile all files using command: g++ main.cpp mainwindow.cpp capture.cpp filter.cpp ReadWriteFiles.cpp Jzon.cpp -lpcap -o program pkg-config --cflags --libs gtkmm-3.0
3. Run the program using the command: ./program
4. A new window should appear

• To start a capture:

  1. Go to Capture in the top left of the window.
  2. Click on Start in the drop down menu and a new window should appear.
  3. In the new window, choose the interface you wish to capture on and include a capture filter if you'd like.
  4. Click Ok and the capture will start. * To apply Display Filters enter desired filter(s) in the box and click Apply. * To clear Display Filters click Clear.

• To stop a capture:

  1. Go to Capture in the top left of the window.
  2. Click on Stop in the drop down menu and the capture will stop

• To Save a Capture:

  1. Go to File in the top left of the window.
  2. Click Save in the drop down menu and a new window should appear.
  3. In the new window, enter in the name that you would like to save the file as and then click Save. * Captures will be saved in Json format. * Saves currently displayed packets(Display Filter)

• To Open an existing Capture:

  1. Go to File in the top left of the window.
  2. Click Open in the drop down menu and a new window should appear.
  3. In the new window, enter in the name of the file you would like to open and click Open.

• Filters: Multiple filter types may be applied at once and are case sensitive.

  • Date: date=[start_date]-[end_date]
    • Format YYYY/MM/DD (Ex. date=2014/01/01-2014/12/31)
  • Time: time=[start_time]-[end_time]
    • Format HH:MM:SS (Ex. time=01:00:00-16:00:00)
  • Day: days=[day(s)_of_week]
    • Format separate days by ',' (Ex. days=Mon,Tue,Wed,Thu,Fri,Sat,Sun)
  • Month: months=[month(s)_of_year]
    • Format separate months by ',' (Ex. months=Jan,Feb,Mar,Apr,May,Jun,Oct)
  • Signal Strength: dbm=[min_dmb]-[max_dbm]
    • Format numbers will be turned negative (Ex. dbm=20-50)
  • Unique MAC Addresses: uniqMac=[true]
    • Format uniqMac=true
  • Single MAC Address: mac=[MAC_address]
    • Format Case & Width sensitive (Ex. 00:5A:42:E9:56:02)
  • Black list MAC addresses: blackList=[saved_text_file]
    • Format use previously saved capture (Ex. blackList=capture.txt)
  • White list MAC addresses: whiteList=[saved_text_file]
    • Format use previously saved capture (Ex. whiteList=capture.txt)

• Graph:

  1. Saving function will create a separate graphing file
  2. Click the "Graph" option on the menu bar under "View"
  3. Firefox will open with the most recently saved capture
  • Note: This requires an internet connection which this tool may have broken while running

• Joseph Sirianni

• Ross Swerling

• Cal Pittner

• Johannes Häggqvist - Jzon.cpp and Jzon.h: Jzon files