Difference between revisions of "Winpcap and Windump"
From Free Knowledge Base- The DUCK Project: information for everyone
m |
m |
||
| Line 3: | Line 3: | ||
WinDump is able to use the interfaces exported by WinPcap. WinDump can run on all the operating systems supported by WinPcap, i.e. Windows 95, 98, ME, NT4, 2000, XP, 2003, Longhorn/Vista. | WinDump is able to use the interfaces exported by WinPcap. WinDump can run on all the operating systems supported by WinPcap, i.e. Windows 95, 98, ME, NT4, 2000, XP, 2003, Longhorn/Vista. | ||
| − | * windump -p : | + | * windump -p : Capture in non-promiscuous mode. |
| − | * windump -D : | + | * windump -D : Show available interfaces. |
| − | * windump -i 2 : | + | * windump -i 2 : Select the second network interface. It is easier to specify the interface number rather than by name. |
| + | |||
<big>'''man page'''</big> | <big>'''man page'''</big> | ||
Revision as of 18:20, 7 July 2007
WinDump: tcpdump for Windows
WinDump is able to use the interfaces exported by WinPcap. WinDump can run on all the operating systems supported by WinPcap, i.e. Windows 95, 98, ME, NT4, 2000, XP, 2003, Longhorn/Vista.
- windump -p : Capture in non-promiscuous mode.
- windump -D : Show available interfaces.
- windump -i 2 : Select the second network interface. It is easier to specify the interface number rather than by name.
man page
tcpdump - dump traffic on a network
SYNOPSIS
tcpdump [ -AdDeflLnNOpqRStuUvxX ] [ -c count ]
[ -C file_size ] [ -F file ]
[ -i interface ] [ -m module ] [ -M secret ]
[ -r file ] [ -s snaplen ] [ -T type ] [ -w file ]
[ -W filecount ]
[ -E spi@ipaddr algo:secret,... ]
[ -y datalinktype ] [ -Z user ]
[ expression ]
The complete windump manual: http://www.winpcap.org/windump/docs/manual.htm
