Difference between revisions of "Winpcap and Windump"
From Free Knowledge Base- The DUCK Project: information for everyone
m |
m |
||
| Line 4: | Line 4: | ||
== WinDump == | == WinDump == | ||
| − | |||
tcpdump for Windows | tcpdump for Windows | ||
| Line 15: | Line 14: | ||
=== man page === | === man page === | ||
| − | |||
tcpdump - dump traffic on a network | tcpdump - dump traffic on a network | ||
SYNOPSIS | SYNOPSIS | ||
| Line 38: | Line 36: | ||
=== Ethereal === | === Ethereal === | ||
| + | network protocol analyzer | ||
| + | Ethereal can read capture files from (libpcap). | ||
=== myNetMon === | === myNetMon === | ||
| − | |||
myNetMon, Network Monitor and Packet Analyzing Tool (V.2.0) | myNetMon, Network Monitor and Packet Analyzing Tool (V.2.0) | ||
Revision as of 18:30, 7 July 2007
WinPcap
The Packet Capture and Network Monitoring Library for Windows
WinDump
tcpdump for Windows
WinDump is able to use the interfaces exported by WinPcap. WinDump can run on all the operating systems supported by WinPcap, i.e. Windows 95, 98, ME, NT4, 2000, XP, 2003, Longhorn/Vista.
- windump -p : Capture in non-promiscuous mode.
- windump -D : Show available interfaces.
- windump -i 2 : Select the second network interface. It is easier to specify the interface number rather than by name.
man page
tcpdump - dump traffic on a network
SYNOPSIS
tcpdump [ -AdDeflLnNOpqRStuUvxX ] [ -c count ]
[ -C file_size ] [ -F file ]
[ -i interface ] [ -m module ] [ -M secret ]
[ -r file ] [ -s snaplen ] [ -T type ] [ -w file ]
[ -W filecount ]
[ -E spi@ipaddr algo:secret,... ]
[ -y datalinktype ] [ -Z user ]
[ expression ]
The complete windump manual: http://www.winpcap.org/windump/docs/manual.htm
Other Winpcap Based Tools
Ethereal
network protocol analyzer Ethereal can read capture files from (libpcap).
myNetMon
myNetMon, Network Monitor and Packet Analyzing Tool (V.2.0)
myNetMon is windows based network monitor and packet analyzing (sniffer) tool. myNetMon uses WinPcap, a windows port of Libpcap which is a packet capturing library.
- It does not seem to work with the lateset WinPcap.
