Questions tagged [packet-capture]

is for questions about capturing packets of various protocols that are transmitted over a network.

A lot of computer network protocols transmit their contents in packets. Packet capture is the interception of these packets as they are moved over a network of some type.

A packet sniffer captures raw data traveling over a network segment and saves it to a file for analysis.

Software

A software sniffer can generally only capture network data either originating from or going to the computer running it, plus any "broadcast" messages, if the computer is connected to the network via a switch. If the computer is connected to the network via a router, it may be able to capture network data for any device on connected to the same router.

Hardware

A hardware packet sniffer is physically connected to the network by connecting it to a router or switch. Sometimes the router or switch has to be configured to allow the sniffer to capture traffic being routed through it; this is called port mirroring.

Analysis

The captured data can be analyzed by the software that captured it, or by a program specifically designed to analyze the network data.

See Also

Wikipedia Article on Packet Analyzers
The term packet sniffer is also common and can be considered a synonym.

659 questions

0

votes

2 answers

How to get the sub-string lying in between two sub-strings in C?

I have a packet capture code that writes http payload into a file. Now i want to extract the URL information from these dumps. For each packet , the payload begins like this. GET /intl/en_com/images/logo_plain.png HTTP/1.1..Host: …

c url string substring packet-capture

asked Jan 17 '10 at 09:35

trinity

10,394
15
49
67

0

votes

1 answer

How to get the data from TcpPacket in a readable format using SharpPcap?

I am building sniffer for my final year project.I want to extract the data from TCP in a human readable format. I am getting the data in Hex format using BitConverter but i want data to be readable i.e. all the Http Browsed links,Get requests,Post…

c# packet-capture packet-sniffers sharppcap packet.net

asked Dec 13 '13 at 06:32

Mustafa Ujjainwala

81
6

0

votes

1 answer

How to find the number of content of bytes returned to browser by the server

I am new to wireshark and trying to solve simple examples. I captured a simple html file and the question i am trying to answer is: "How many bytes of content are being returned to your browser?". I am confused here. Let me first show the screenshot…

wireshark packet-capture

asked Nov 26 '13 at 17:31

yrazlik

10,411
33
99
165

0

votes

2 answers

TCPDUMP incoming traffic capturing

I am using TCPDUMP-arm because I'd like to capture TCP packets arriving on my tablet. The problem is that I want to get rid of the results about the outgoing packets. When I execute: ./tcpdump-arm tcp -qt -l > /sdcard/res.txt I get results…

android packet tcpdump packet-capture

asked Nov 19 '13 at 20:54

Philip St

81
10

0

votes

1 answer

Capture Mobile Data Packets

I would like to capture packets of the internet traffic of my mobile. I would like to ask that if I install wire shark on my desktop machine, and then make my desktop a wifi hot spot, connect my mobile phone with this desktop powered wifi then Would…

wireshark packet-capture packet-sniffers packets

asked Nov 05 '13 at 09:40

Zohaib

7,026
3
26
35

0

votes

1 answer

WinDivert layer parameter

The layer of the WinDivert handle is determined by the layer parameter. Currently the following layers are supported. DIVERT_LAYER_NETWORK :- The network layer. This is the default. DIVERT_LAYER_NETWORK_FORWARD :- The network layer (forwarded…

security networking network-programming packet-capture

asked Oct 20 '13 at 22:03

Security Crazy

90
1
7

0

votes

1 answer

Packet capture on wireless network (libpcap)

I have a small home network that I would like to analyze and capture the traffic on. What are my options for doing this? Ultimately, I would like to use a packet capture library, such as libpcap, to sniff the network in real-time as my router…

networking wireless libpcap packet-capture packet-sniffers

asked Oct 12 '13 at 22:05

amoeba

95
4
17

0

votes

2 answers

Possible to sit on the network and receive a TCP stream/UDP datagrams?

Has anyone out there done the work of sitting on top of a packet capture interface (like jpcap) with an implementation of UDPSocket (for UDP datagrams) and InputStream (for TCP streams)? I suppose it wouldn't be too hard to do given the callback API…

java network-programming stream packet-capture

asked Dec 02 '09 at 23:55

magneticMonster

2,373
6
30
46

0

votes

2 answers

Can i capture https (CONNECT) urls using winpkfilter?

I am trying to determine which https urls are being opened on my local machine. I have installed winpkfilter and trying to use C# to capture traffic. I can capture packets fine and can even see the GET and POST requests in traffic which is not…

c# https filter packet-capture network-traffic

asked Aug 04 '13 at 17:47

Steve Johnson

3,054
7
46
71

0

votes

1 answer

Decode packet data using bultin dissector

I have a protocol that exactly follows ipv6 header format and is encapsulated in udp for transmission. Is there any way to make wireshark decode the udp data as an ip packet?

networking wireshark packet packet-capture

asked Aug 02 '13 at 19:20

cobie

7,023
11
38
60

0

votes

1 answer

ping with tcpflow and tcpdump

When I use tcpflow icmp and ping I have no answer, but when I use tcpdump icmp aand ping I'm getting answer. Is something wrong with my tcpflow configuration or it should be like that?

networking tcpdump packet-capture packet-sniffers

asked Jul 31 '13 at 11:59

akuzma

1,592
6
22
49

0

votes

0 answers

How to make Packet sniffer in java?

I am trying to make a packet sniffer in java. My environment is Ubuntu 12.04 64bit. The first thing I found from internet recommends install Jpcap, But I could not find any Jpcap installation files for Ubuntu 64bit. After that I was trying to…

java packet libpcap packet-capture packet-sniffers

asked Jul 01 '13 at 06:14

Juneyoung Oh

7,318
16
73
121

0

votes

1 answer

executing a perl script on a remote machine as a root and getting the output back into the webpage using javascript

i perl script that reads the network traffic and prints out payloads of packets of specific length back onto the terminal. and for this to happen, the script should be initiated by root or else the packets will not be read. i am using pcap in perl…

javascript perl web packet-capture

asked Jun 28 '13 at 16:23

Kiran Vemuri

2,762
2
24
40

0

votes

1 answer

Filter on GRE packets payload ip /dst

I´m using libjpcap to capture packets from the network and handle them in my application. Currently, we can use filters so that we capture only from a certain destination. For example, src host 10.159.2.3 will only capture traffic from that…

java ip libpcap packet-capture

asked Jun 26 '13 at 17:49

Tom

43,810
29
138
169

0

votes

1 answer

Capture and forwarding of network traffic from a particular application on Windows

I need to capture network traffic that is going in/out of a particular application. The main issue is that I would like to do this in a blocking fashion -- i.e. capture the traffic, perform some analysis and encryption/decryption on it and then…

c++ packet-capture packet-sniffers winpcap

asked May 30 '13 at 17:30

Sib

31
1
4

Prev 1 2 3

…

43 44 Next