🌐 Network Traffic Visualizing Analyzer

Visualize real-time network traffic on a world map using this tool! This tool captures packets, identifies their geographical origin and/or destination, and plots them as interactive lines on a 3D globe (Google Earth), showing whether they are Incoming, Outgoing, or Transit connections.

🎯 Purpose

The goal of this project is to analyze and visualize IP network traffic to understand where data is traveling across the globe. It helps:

1. Students learning computer networking
2. Security enthusiasts monitoring traffic behavior
3. Anyone curious about where their internet packets go

🛠️ Tools Used

Component Usage Python 3.1 Programming language WireShark(with Tshark) Capture packets GeoLite2 Database (MaxMind) IP geolocation Google Earth (Desktop/Pro) Visualization of connections

🌈 Features

1. Captures and visualizes real network packets
2. Marks lines as:
   1. Outgoing packets
   2. Incoming packets
   3. Transit packets (not involving you)
3. Clickable tooltips showing:
   1. Location of source & destination
   2. Packet direction
   3. IP addresses involved
4. Intelligent filtering of private/internal IPs
5. Batch processing for improved speed
6. Shows a summary report:
   1. Total packets processed
   2. Count of unknown locations
   3. Local packet counts

📦 Installation

(for Windows)

Python:

Visit the official Python website (www.python.org/downloads) and download the latest stable Windows installer (.exe file). Double-click the downloaded .exe file. Follow the prompts to setup your python.

dpkt Library:

In Command Prompt, type: pip install dpkt

WireShark:

Go to the official WireShark Website (https://www.wireshark.org/download.html) and download compatible .exe file. Complete Installation and crucially tick the Tshark checkbox when prompted.

GeoLite2 Database:

Options:

1. https://github.com/P3TERX/GeoLite.mmdb
2. (Offical Website) (Requires a free MaxMind Account) https://dev.maxmind.com/geoip/geolite2-free-geolocation-data/
3. (My Drive Link) https://drive.google.com/drive/folders/164uBi78hZSvKKyNz8GOEyi2uAdiVPJMp?usp=drive_link

Google Earth Pro:

Download compatible version from: https://www.google.com/earth/versions/#earth-pro

🚀 How to Run the Project

1. Connect to the internet.
2. Capture on WireShark for a sample (try searching various websites for diversified result). Save as capture.pcapng file.
3. Run the code on Python/VSCode. (be extra sure to keep all the above downloaded tools in the same folder and also change the code according to your system (database folder location and your own IP address))
4. You will get a terminal output + a network_traffic.kml file.
5. Open Google Earth Pro, upload your .kml file and get an interactive visual of your traffic.

🧠 Future Scalable Improvements

1. Show packet type (TCP/UDP/HTTPS/DNS)
2. Live refreshing map
3. Alert system for suspicious IPs
4. Adding a colour scheme for various types of packets

✍️ About the Creator

Hello! I am Shreya Ghoshal, currently a college student, aiming to sharpen my skills by creating useful tools for thw world. While I have just started, I am deeply passionate about data science. I have been coding since 8th grade and now want to create a career out of Computer Science. If you want to connect, my LinkedIn is: www.linkedin.com/in/shreya-ghoshal-94aab0261

⭐ Like This Project?

Star the repository and share it! Contributions, suggestions, and improvements are highly appreciated! 🌟