redhound 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: f6935c5774360fee584469172ce32fb3d5d75d9c6afac07471d6f81a1c2abeab
+  data.tar.gz: 98f8c7e7e2910174326df83669f9f2d48e3fbabed8ce74083e060299fd95b724
+SHA512:
+  metadata.gz: 17a0eb8f7d9cf19e20c2e44a98c23054aaedc51e1fac0d314b4832c85a3c586d68057a3367887beb8a33ac41b27c1746569510cc4da874bf23ab92b130fe0c7c
+  data.tar.gz: 0c3cae42594bfc3e341885efb840212b6d1e36b39c7ef53ece6dddb7ad59fc97d59842d9397fe82ae2f7b1f9ad3775d4e493c9987611058b85b65d4d40e405b5

data/CHANGELOG.md

@@ -0,0 +1,5 @@
+## [Unreleased]
+
+## [0.1.0] - 2024-11-05
+
+- Initial release

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,132 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, caste, color, religion, or sexual
+identity and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the overall
+  community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or advances of
+  any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or email address,
+  without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of
+acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+Community leaders have the right and responsibility to remove, edit, or reject
+comments, commits, code, wiki edits, issues, and other contributions that are
+not aligned to this Code of Conduct, and will communicate reasons for moderation
+decisions when appropriate.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+Examples of representing our community include using an official email address,
+posting via an official social media account, or acting as an appointed
+representative at an online or offline event.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the community leaders responsible for enforcement at
+[INSERT CONTACT METHOD].
+All complaints will be reviewed and investigated promptly and fairly.
+
+All community leaders are obligated to respect the privacy and security of the
+reporter of any incident.
+
+## Enforcement Guidelines
+
+Community leaders will follow these Community Impact Guidelines in determining
+the consequences for any action they deem in violation of this Code of Conduct:
+
+### 1. Correction
+
+**Community Impact**: Use of inappropriate language or other behavior deemed
+unprofessional or unwelcome in the community.
+
+**Consequence**: A private, written warning from community leaders, providing
+clarity around the nature of the violation and an explanation of why the
+behavior was inappropriate. A public apology may be requested.
+
+### 2. Warning
+
+**Community Impact**: A violation through a single incident or series of
+actions.
+
+**Consequence**: A warning with consequences for continued behavior. No
+interaction with the people involved, including unsolicited interaction with
+those enforcing the Code of Conduct, for a specified period of time. This
+includes avoiding interactions in community spaces as well as external channels
+like social media. Violating these terms may lead to a temporary or permanent
+ban.
+
+### 3. Temporary Ban
+
+**Community Impact**: A serious violation of community standards, including
+sustained inappropriate behavior.
+
+**Consequence**: A temporary ban from any sort of interaction or public
+communication with the community for a specified period of time. No public or
+private interaction with the people involved, including unsolicited interaction
+with those enforcing the Code of Conduct, is allowed during this period.
+Violating these terms may lead to a permanent ban.
+
+### 4. Permanent Ban
+
+**Community Impact**: Demonstrating a pattern of violation of community
+standards, including sustained inappropriate behavior, harassment of an
+individual, or aggression toward or disparagement of classes of individuals.
+
+**Consequence**: A permanent ban from any sort of public interaction within the
+community.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage],
+version 2.1, available at
+[https://www.contributor-covenant.org/version/2/1/code_of_conduct.html][v2.1].
+
+Community Impact Guidelines were inspired by
+[Mozilla's code of conduct enforcement ladder][Mozilla CoC].
+
+For answers to common questions about this code of conduct, see the FAQ at
+[https://www.contributor-covenant.org/faq][FAQ]. Translations are available at
+[https://www.contributor-covenant.org/translations][translations].
+
+[homepage]: https://www.contributor-covenant.org
+[v2.1]: https://www.contributor-covenant.org/version/2/1/code_of_conduct.html
+[Mozilla CoC]: https://github.com/mozilla/diversity
+[FAQ]: https://www.contributor-covenant.org/faq
+[translations]: https://www.contributor-covenant.org/translations

data/Dockerfile

@@ -0,0 +1,7 @@
+FROM ruby:3.3.4
+RUN apt-get update -qq && apt-get install -y build-essential libpq-dev nodejs
+WORKDIR /app
+COPY Gemfile /app/Gemfile
+RUN bundle install
+ENV LANG=ja_JP.UTF-8
+ENV TZ=Asia/Tokyo

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2024 Yudai Takada
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,42 @@
+# Redhound
+
+Pure Ruby packet analyzer.
+At this time, it is only guaranteed to work on Linux.
+
+## Installation
+
+Install the gem and add to the application's Gemfile by executing:
+
+```bash
+bundle add redhound
+```
+
+If bundler is not being used to manage dependencies, install the gem by executing:
+
+```bash
+gem install redhound
+```
+
+## Usage
+
+```command
+Usage: redhound [options] ...
+
+Options:
+    -i, --interface INTERFACE        name or idx of interface
+    -D, --list-interfaces            print list of interfaces and exit
+    -h, --help                       display this help and exit
+    -v, --version                    display version information and exit
+```
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/ydah/redhound. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [code of conduct](https://github.com/ydah/redhound/blob/main/CODE_OF_CONDUCT.md).
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
+
+## Code of Conduct
+
+Everyone interacting in the Redhound project's codebases, issue trackers, chat rooms and mailing lists is expected to follow the [code of conduct](https://github.com/ydah/redhound/blob/main/CODE_OF_CONDUCT.md).

data/Rakefile

@@ -0,0 +1,4 @@
+# frozen_string_literal: true
+
+require 'bundler/gem_tasks'
+task default: %i[]

data/docker-compose.yml

@@ -0,0 +1,9 @@
+version: '3.7'
+services:
+  app:
+    build: .
+    tty: true
+    ports:
+      - 3000:3000
+    volumes:
+      - .:/app

data/exe/redhound

@@ -0,0 +1,7 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: true
+
+$LOAD_PATH << File.join(__dir__, '../lib')
+require 'redhound'
+
+Redhound::Command.new.run(ARGV.dup)

data/lib/redhound/analyzer.rb

@@ -0,0 +1,30 @@
+# frozen_string_literal: true
+
+module Redhound
+  class Analyzer
+    def self.analyze(msg:)
+      new(msg: msg).analyze
+    end
+
+    def initialize(msg:)
+      @msg = msg
+    end
+
+    def analyze
+      puts 'Analyzing...'
+      ether = Header::Ether.generate(bytes: @msg.bytes[0..13])
+      ether.dump
+      return unless ether.ipv4?
+
+      ip = Header::Ipv4.generate(bytes: @msg.bytes[14..33])
+      ip.dump
+      if ip.udp?
+        udp = Header::Udp.generate(bytes: @msg.bytes[34..41])
+        udp.dump
+      elsif ip.icmp?
+        icmp = Header::Icmp.generate(bytes: @msg.bytes[34..41])
+        icmp.dump
+      end
+    end
+  end
+end

data/lib/redhound/command.rb

@@ -0,0 +1,61 @@
+# frozen_string_literal: true
+
+require 'optparse'
+require 'socket'
+
+module Redhound
+  class Command
+    def initialize
+      @options = { ifname: nil }
+    end
+
+    def run(argv)
+      parse(argv)
+      if @options[:ifname].nil?
+        warn 'Error: interface is required'
+        exit 1
+      end
+      Receiver.run(ifname: @options[:ifname])
+    end
+
+    def parse(argv)
+      OptionParser.new do |o|
+        o.banner = <<~'BANNER' + <<~BANNER2
+             ___         ____                     __
+            / _ \___ ___/ / /  ___  __ _____  ___/ /
+           / , _/ -_) _  / _ \/ _ \/ // / _ \/ _  /
+          /_/|_|\__/\_,_/_//_/\___/\_,_/_//_/\_,_/
+
+        BANNER
+          Version: #{Redhound::VERSION}
+          Dump and analyze network packets.
+
+          Usage: redhound [options] ...
+        BANNER2
+        o.separator ''
+        o.separator 'Options:'
+        o.on('-i', '--interface INTERFACE', 'name or idx of interface') { |v| @options[:ifname] = v }
+        o.on('-D', '--list-interfaces', 'print list of interfaces and exit') do
+          list_interfaces
+          exit
+        end
+        o.on('-h', '--help', 'display this help and exit') do
+          puts o
+          exit
+        end
+        o.on('-v', '--version', 'display version information and exit') do
+          puts "Redhound #{Redhound::VERSION}"
+          exit
+        end
+        o.on_tail
+        o.parse!(argv)
+      end
+    end
+
+    private
+
+    def list_interfaces
+      ::Socket.getifaddrs.each { |ifaddr| puts ifaddr.name }
+    end
+  end
+end

data/lib/redhound/header/ether.rb

@@ -0,0 +1,68 @@
+# frozen_string_literal: true
+
+module Redhound
+  class Header
+    class Ether
+      ETH_P_IP = 0x0800
+
+      class << self
+        def generate(bytes:)
+          new(bytes:).generate
+        end
+      end
+
+      def initialize(bytes:)
+        raise ArgumentError, 'bytes must be 14 bytes' unless bytes.size == 14
+
+        @bytes = bytes
+      end
+
+      def generate
+        pp @bytes[0..5]
+        @dhost = @bytes[0..5]
+        @shost = @bytes[6..11]
+        @type = @bytes[12..13]
+        self
+      end
+
+      def ipv4?
+        hex_type == ETH_P_IP
+      end
+
+      def dump
+        puts 'ETHERNET HEADER----------------'
+        puts self
+      end
+
+      def to_s
+        <<~ETHER
+          Destination MAC: #{dhost}
+          Source MAC: #{shost}
+          Type: #{type}
+        ETHER
+      end
+
+      def dhost
+        @dhost.map { |b| b.to_s(16).rjust(2, '0') }.join(':')
+      end
+
+      def shost
+        @shost.map { |b| b.to_s(16).rjust(2, '0') }.join(':')
+      end
+
+      def type
+        if ipv4?
+          'IPv4'
+        else
+          'Unknown'
+        end
+      end
+
+      private
+
+      def hex_type
+        @hex_type ||= @type.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+    end
+  end
+end

data/lib/redhound/header/icmp.rb

@@ -0,0 +1,77 @@
+# frozen_string_literal: true
+
+module Redhound
+  class Header
+    class Icmp
+      class << self
+        def generate(bytes:)
+          new(bytes:).generate
+        end
+      end
+
+      def initialize(bytes:)
+        raise ArgumentError, 'bytes must be bigger than 8 bytes' unless bytes.size >= 8
+
+        @bytes = bytes
+      end
+
+      def generate
+        @type = @bytes[0]
+        @code = @bytes[1]
+        @check = @bytes[2..3]
+        # refs: https://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml#icmp-parameters-types
+        if @type.zero? || @type == 8
+          @id = @bytes[4..5]
+          @seq = @bytes[6..7]
+          @data = @bytes[8..]
+        else
+          @data = @bytes[4..]
+        end
+        self
+      end
+
+      def dump
+        puts 'ICMP HEADER----------------'
+        puts self
+      end
+
+      def to_s
+        if @type.zero? || @type == 8
+          <<~ICMP
+            Type: #{@type}
+            Code: #{@code}
+            Checksum: #{check}
+            ID: #{id}
+            Sequence: #{seq}
+            Data: #{data}
+          ICMP
+        else
+          <<~ICMP
+            Type: #{@type}
+            Code: #{@code}
+            Checksum: #{check}
+            Data: #{data}
+          ICMP
+        end
+      end
+
+      private
+
+      def check
+        @check.map { |b| b.to_s(16).rjust(2, '0') }.join
+      end
+
+      def id
+        @id.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def seq
+        @seq.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def data
+        @data.map(&:chr).join
+      end
+    end
+  end
+end

data/lib/redhound/header/ipv4.rb

@@ -0,0 +1,112 @@
+# frozen_string_literal: true
+
+module Redhound
+  class Header
+    class Ipv4
+      class << self
+        def generate(bytes:)
+          new(bytes:).generate
+        end
+      end
+
+      # ref: https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml#protocol-numbers-1
+      ICMP = 1
+      UDP = 17
+
+      def initialize(bytes:)
+        raise ArgumentError, 'bytes must be 20 bytes' unless bytes.size == 20
+
+        @bytes = bytes
+      end
+
+      def generate
+        @version = @bytes[0]
+        @ihl = @bytes[0]
+        @tos = @bytes[1]
+        @tot_len = @bytes[2..3]
+        @id = @bytes[4..5]
+        @frag_off = @bytes[6..7]
+        @ttl = @bytes[8]
+        @protocol = @bytes[9]
+        @check = @bytes[10..11]
+        @saddr = @bytes[12..15]
+        @daddr = @bytes[16..19]
+        self
+      end
+
+      def icmp?
+        @protocol == ICMP
+      end
+
+      def udp?
+        @protocol == UDP
+      end
+
+      def dump
+        puts 'IPv4 HEADER----------------'
+        puts self
+      end
+
+      def to_s
+        <<~IPV4
+          Version: #{@version}
+          IHL: #{@ihl}
+          TOS: #{@tos}
+          Total Length: #{tot_len}
+          ID: #{id}
+          Fragment Offset: #{frag_off}
+          TTL: #{@ttl}
+          Protocol: #{protocol}
+          Checksum: #{check}
+          Source IP: #{saddr}
+          Destination IP: #{daddr}
+        IPV4
+      end
+
+      private
+
+      def version
+        @version & 0xF0
+      end
+
+      def ihl
+        @ihl & 0x0F
+      end
+
+      def tot_len
+        @tot_len.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def id
+        @id.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def frag_off
+        @frag_off.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16) & 0x1FFF
+      end
+
+      def protocol
+        case @protocol
+        when ICMP
+          'ICMP'
+        when UDP
+          'UDP'
+        else
+          'Unknown'
+        end
+      end
+
+      def check
+        @check.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def saddr
+        @saddr.map { |b| b.to_s(16).rjust(2, '0') }.join('.')
+      end
+
+      def daddr
+        @daddr.map { |b| b.to_s(16).rjust(2, '0') }.join('.')
+      end
+    end
+  end
+end

data/lib/redhound/header/udp.rb

@@ -0,0 +1,63 @@
+# frozen_string_literal: true
+
+module Redhound
+  class Header
+    class Udp
+      class << self
+        def generate(bytes:)
+          new(bytes:).generate
+        end
+      end
+
+      def initialize(bytes:)
+        raise ArgumentError, 'bytes must be bigger than 8 bytes' unless bytes.size >= 8
+
+        @bytes = bytes
+      end
+
+      def generate
+        @sport = @bytes[0..1]
+        @dport = @bytes[2..3]
+        @len = @bytes[4..5]
+        @check = @bytes[6..7]
+        @data = @bytes[8..]
+        self
+      end
+
+      def dump
+        puts 'UDP HEADER----------------'
+        puts self
+      end
+
+      def to_s
+        <<~UDP
+          Source Port: #{sport}
+          Destination Port: #{dport}
+          Length: #{len}
+          Checksum: #{check}
+          Data: #{data}
+        UDP
+      end
+
+      def sport
+        @sport.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def dport
+        @dport.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def len
+        @len.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def check
+        @check.map { |b| b.to_s(16).rjust(2, '0') }.join.to_i(16)
+      end
+
+      def data
+        @data.map(&:chr).join
+      end
+    end
+  end
+end

data/lib/redhound/header.rb

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+
+require_relative 'header/ether'
+require_relative 'header/icmp'
+require_relative 'header/ipv4'
+require_relative 'header/udp'

data/lib/redhound/packet_mreq.rb

@@ -0,0 +1,46 @@
+# frozen_string_literal: true
+
+require 'socket'
+
+module Redhound
+  class PacketMreq
+    PACKET_MR_PROMISC = 0x0001 # NOTE: netpacket/packet.h
+
+    def initialize(ifname:)
+      @ifname = ifname
+    end
+
+    # see: https://man7.org/linux/man-pages/man7/packet.7.html
+    # struct packet_mreq {
+    #   int            mr_ifindex;    /* interface index */
+    #   unsigned short mr_type;       /* action */
+    #   unsigned short mr_alen;       /* address length */
+    #   unsigned char  mr_address[8]; /* physical-layer address */
+    # };
+    def generate
+      mr_ifindex + mr_type + mr_alen + mr_address
+    end
+
+    def mr_ifindex
+      @mr_ifindex ||= [[index].pack('c')].pack('a4')
+    end
+
+    private
+
+    def index
+      ::Socket.getifaddrs.find { |ifaddr| ifaddr.name == @ifname }&.ifindex
+    end
+
+    def mr_type
+      @mr_type ||= [PACKET_MR_PROMISC].pack('S')
+    end
+
+    def mr_alen
+      @mr_alen ||= [0].pack('S')
+    end
+
+    def mr_address
+      @mr_address ||= [0].pack('C') * 8
+    end
+  end
+end

data/lib/redhound/receiver.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+require 'socket'
+
+module Redhound
+  class Receiver
+    class << self
+      def run(ifname:)
+        new(ifname:).run
+      end
+    end
+
+    def initialize(ifname:)
+      @ifname = ifname
+      @socket = SocketBuilder.build(ifname:)
+    end
+
+    def run
+      loop do
+        msg, = @socket.recvfrom(2048)
+        Analyzer.analyze(msg:)
+      end
+    end
+  end
+end

data/lib/redhound/socket_builder.rb

@@ -0,0 +1,30 @@
+# frozen_string_literal: true
+
+require 'socket'
+
+module Redhound
+  class SocketBuilder
+    class << self
+      def build(ifname:)
+        new(ifname:).build
+      end
+    end
+
+    SOL_PACKET            = 0x0107 # bits/socket.h
+    PACKET_ADD_MEMBERSHIP = 0x0001 # NOTE: netpacket/packet.h
+    ETH_P_ALL             = 768    # NOTE: htons(ETH_P_ALL) => linux/if_ether.h
+    PACKED_ETH_P_ALL = [ETH_P_ALL].pack('S').unpack1('S>')
+
+    def initialize(ifname:)
+      @ifname = ifname
+      @mq_req = PacketMreq.new(ifname: @ifname)
+    end
+
+    def build
+      socket = Socket.new(Socket::AF_PACKET, Socket::SOCK_RAW, ETH_P_ALL)
+      socket.bind([Socket::AF_PACKET, PACKED_ETH_P_ALL, @mq_req.mr_ifindex].pack('SS>a16'))
+      socket.setsockopt(SOL_PACKET, PACKET_ADD_MEMBERSHIP, @mq_req.generate)
+      socket
+    end
+  end
+end

data/lib/redhound/version.rb

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module Redhound
+  VERSION = '0.1.0'
+end

data/lib/redhound.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+require_relative 'redhound/analyzer'
+require_relative 'redhound/command'
+require_relative 'redhound/header'
+require_relative 'redhound/packet_mreq'
+require_relative 'redhound/receiver'
+require_relative 'redhound/socket_builder'
+require_relative 'redhound/version'

data/sig/redhound.rbs

@@ -0,0 +1,4 @@
+module Redhound
+  VERSION: String
+  # See the writing guide of rbs: https://github.com/ruby/rbs#guides
+end

metadata

@@ -0,0 +1,69 @@
+--- !ruby/object:Gem::Specification
+name: redhound
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Yudai Takada
+bindir: exe
+cert_chain: []
+date: 2024-11-05 00:00:00.000000000 Z
+dependencies: []
+description: Redhound is a pure Ruby packet analyzer that can be used to capture and
+  analyze network packets.
+email:
+- t.yudai92@gmail.com
+executables:
+- redhound
+extensions: []
+extra_rdoc_files: []
+files:
+- CHANGELOG.md
+- CODE_OF_CONDUCT.md
+- Dockerfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- docker-compose.yml
+- exe/redhound
+- lib/redhound.rb
+- lib/redhound/analyzer.rb
+- lib/redhound/command.rb
+- lib/redhound/header.rb
+- lib/redhound/header/ether.rb
+- lib/redhound/header/icmp.rb
+- lib/redhound/header/ipv4.rb
+- lib/redhound/header/udp.rb
+- lib/redhound/packet_mreq.rb
+- lib/redhound/receiver.rb
+- lib/redhound/socket_builder.rb
+- lib/redhound/version.rb
+- sig/redhound.rbs
+homepage: https://github.com/ydah/redhound
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/ydah/redhound
+  source_code_uri: https://github.com/ydah/redhound
+  documentation_uri: https://github.com/ydah/redhound
+  changelog_uri: https://github.com/ydah/redhound/releases
+  bug_tracker_uri: https://github.com/ydah/redhound/issues
+  rubygems_mfa_required: 'true'
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '3.3'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.6.0.dev
+specification_version: 4
+summary: Pure Ruby packet analyzer
+test_files: []