Stack Overflow
Stack Overflow

Questions tagged [winpcap]

WinPcap is a discontinued tool for link-layer network access in Windows environments: it allowed applications to capture and transmit network packets bypassing the protocol stack.

WinPcap is a discontinued tool for link-layer network access in Windows environments: it allowed applications to capture and transmit network packets bypassing the protocol stack, and has additional useful features, including kernel-level packet filtering, a network statistics engine and support for remote packet capture.

Project page

361 questions
20
votes
8 answers

TCP: How are the seq / ack numbers generated?

I am currently working on a program which sniffs TCP packets being sent and received to and from a particular address. What I am trying to accomplish is replying with custom tailored packets to certain received packets. I've already got the parsing…
xian
  • 4,657
  • 5
  • 34
  • 38
14
votes
3 answers

jNetPcap vs Jpcap

wondering any of you can give me a bit of comments + insights please. In term of performance, which one should I use, jNetPcap or Jpcap? Thanks!
Gilbeg
  • 741
  • 2
  • 9
  • 19
13
votes
2 answers

Pcap.net vs Sharppcap

I just want to listen a network device, capture packets and write the packets to a dummy file. Also i need to filter packets while listening so ill only write packets which passes the filter. I need to do these on .net c#. These are my requirements.…
Emre Erisgen
  • 147
  • 1
  • 1
  • 6
13
votes
2 answers

c# - how to sniff packets in an app without relying on WinPCap?

BACKGROUND: I now understand how to write a C# application that can monitor packets going in/out of the network card on the PC the application is running on. The approach I know relies on http://www.winpcap.org/ being already installed on the PC…
Greg
  • 34,042
  • 79
  • 253
  • 454
12
votes
7 answers

How do I hook the TCP stack in Windows to sniff and modify packets?

I'd like to write a packet sniffer and editor for Windows. I want to able to see the contents of all packets entering and leaving my system and possibly modify them. Any language is fine but I'd like it to run fast enough that it won't burden the…
Eyal
  • 5,728
  • 7
  • 43
  • 70
7
votes
3 answers

TCP Connection Hijacking

I have a small project that I've been working on in C++, and due to the nature of what it does, I need to insert packets in to a live TCP stream. (The purpose is innocent enough, http://ee.forumify.com/viewtopic.php?id=3299 if you MUST know) I'm…
Kaslai
  • 2,445
  • 17
  • 17
7
votes
2 answers

.net packet capture: pcap.net vs sharppcap

interested in any comments anyone has around the various .net tools which can be used for passive packet capture. In terms of winpcap the choice seems to be between pcap.net and sharppcap. Another potential offering is Microsoft's NetworkMonitor and…
Patrick
  • 8,175
  • 7
  • 56
  • 72
7
votes
2 answers

pip install pcapy cannot open include file 'pcap.h'

I tried to install pcapy using pip install pcapy, but I encoutered an error stating that the file pcap.h does not exist as following: Installing collected packages: pcapy Running setup.py install for pcapy ... error Complete output from…
Skiller Dz
  • 897
  • 10
  • 17
7
votes
4 answers

How to send a WOL package(or anything at all) through a nic which has no IP address?

I'm trying to send a WOL package on all interfaces in order to wake up the gateway(which is the DHCP server, so the machine won't have an IP yet). And it seems that I can only bind sockets to IP and port pairs... So the question is: How can a create…
Tarnay Kálmán
  • 6,907
  • 5
  • 46
  • 57
7
votes
3 answers

compile gopacket on windows 64bit

I am trying to use gopacket on my windows 10. I'm using it to sniff and inject packets directly to/from the NIC. I can easily compile and run my code with GOARCH=386 but can't in GOARCH=amd64. Worth noticing: I am NOT trying to cross-compile. I'm…
J. Dow
  • 351
  • 3
  • 5
6
votes
1 answer

pcap_findalldevs_ex function is undefined

I am trying out an example of obtaining advanced information about installed n/w devices from WinPcap. I have even followed the instructions for including WinPcap library ,still the compiler complains that pcap_findalldevs_ex is undefined at line if…
Searock
  • 6,278
  • 11
  • 62
  • 98
6
votes
4 answers

How to hijack all local http request and extract the url using c?

What direction should I go in(libraries, documents)? UPDATE Can someone illustrate how to use winpcap to do the job? UPDATE 2 How do I verify whether a packet is an HTTP one?
Gtker
  • 2,237
  • 9
  • 29
  • 37
6
votes
5 answers

how to reassemble tcp segment?

im now developing a project using winpcap..as i have known packets being sniffed are usually fragmented packets. how to reassemble this TCP segements?..any ideas, suggestion or tutorials available?.. this i assume to be the only way i can view the…
jerams
  • 113
  • 1
  • 2
  • 8
6
votes
1 answer

How do I install Net::Pcap for Strawberry Perl in Windows 7?

I try to install Net::Pcap in Windows, but it gives the following error messages: c:\P P> cpan cpan> install Net::Pcap socket.h patched... ok looking for -lwpcap... yes checking for pcap_lib_version() in -lwpcap... no - - - - - - - - - - - - - - -…
P P
  • 137
  • 3
  • 13
5
votes
2 answers

Wireshark/Winpcap Filter ICMPv6 Router Advertisement

What is the filter expression syntax on wireshark or winpcap to only display icmpv6 router advertisement?
rucciva
  • 157
  • 1
  • 1
  • 11
1
2 3
23 24