winpcap

how works applications which blocks web sites?

I know only one low-level way of blocking websites - hosts file. However, it is obvious that main stream programs has some other way of achieving this. I have an idea for new model of this kind of program, but without possibility of blocking sites it is useless :( Blocking is one problem, another is filtering and replacing content in ...

How to pass a pointer to a member function to a C function?

Possible Duplicate: Using a C++ class member function as a C callback function I'm writing an object-oriented library using a C library (winpcap). I need to pass the callback function that is called when a network packet arrives as a function pointer. I would like to pass a member function pointer to winpcap, to keep my design...

Winpcap saving raw packets not from an adapter.

I am trying to build an application that converts my old custom Ethernet logs (bin files) to standard winpcap style logs. The problem is that I can't seem to find an example of how to opening a pcap_t* without using an adapter (network card). The temp.pkt has not been created. I have looked thou the examples provided with Winpcap and...

risk related to using winPcap in place of socket

What I have read so far, winPcap allows you to bypass OS and bypass application and transport layer processing for TCP and provides direct access to the link layer. I am planning to use winpcap to do some user application stuff and not just sniffing. I will be receiving and sending critical information using pcap which I am currently do...

can I use libpcap on windows (or does this require winpcap)?

Hi, Can I use libpcap on windows in a C program (or does this require winpcap)? If yes, do you know if libpcap would have some advantages over WinPCap or are they the same re functionality? ...

WinPCap - how can I get protocol (e.g. HTTP) within TCP packet & HTTP fields?

Hi, As background I'm want to be able to, within a capture access: what is the protocol within the TCP packets, e.g. HTTP? (specifically I'm after filter on web traffic) what is the Length of the HTTP part Q1 - Does WinPCap support getting this? Q2 - If no, any recommendations re how to? thanks ...

Broadcast a UDP message in LAN with fake source IP with delphi

hi.. I want to broadcast a UDP message in my LAN with fake source IP ( spoofing ) 1. Do winpcap able to do this ? 2. Do this work on winxp, win7 ? 3. i'm using delphi, is there any good components available ? Thanks. ...

to monitor local pc network and block ip's is winpcap is the tool ?

Hello i need to build network monitor that sniff the network and to hold ip policy that will enable me to block the network based on this policy for example: if im getting incoming http protocol from ip that is in my ip policy black list and now i like to block it and for example redirect this http request so it could contain now my http...

SharpPcap Encoding.UTF8.GetBytes

Hello Guys, Does someone know which is the right way to get the actual text in these bytes? I do something wrong here. And another question: is utf-8 the most generic encoding, that will show most of the chars correctly? TY private void device_OnPacketArrival(object sender, SharpPcap.CaptureEventArgs e) { string str =...

pcap_dump file not opened y Wireshark

I am trying to save the output of this file in libpcap format and although the file does get saved and the right data is written into it, Wireshark is unable to open it. Anyone see what I am missing here ? Thanks. // opening the device here to listen handle = pcap_open_live( dev, BUFSIZ, 1, 1000, errbuf ); unsigned int dlt = DL...

c# - how to sniff packets in an app without relying on WinPCap?

Hi, BACKGROUND: I now understand how to write a C# application that can monitor packets going in/out of the network card on the PC the application is running on. The approach I know relies on http://www.winpcap.org/ being already installed on the PC however, and then I use a C# wrapper such as http://pcapdotnet.codeplex.com/ or http://...

Capturing DNS responses with PCap.Net???

Hi, Q1 - Is it possible to capture DNS request/responses with the library? Q2 - If yes, once I have the packet does anyone have any sample code that shows how I could extract the fields from the DNS response? In particular the IP address that DNS resolved for the given DNS name provided in particular. ...

Winpcap sometimes mysteriously fails,anyone knows the reason?

Yesterday in my office,I was using wireless and winpcap just fails. And today it's OK again(not wireless this time). Anyone knows the reason? ...

jNetPcap vs Jpcap

Hi all, wondering any of you can give me a bit of comments + insights please. In term of performance, which one should I use, jNetPcap or Jpcap? Thanks! ...

What are the units of winpcap captured packets, Layer 2 frames or layer 3 packets?

Just a wondering while developing a network traffic inspection program, no context is relevant! ...

WinPcap and IP Change

Hi, im using WinPcap to listen to Ethernet-Traffic. The Ethernet-Packets contain a speciel Real-Time Protocol. Works great so far, but now I have to change the Ip Address of the adapter, on which pcap is listening. The moment I change the Ip winpcap doesn't stop working but don't capture all pakets. Pakets which are send from the loc...

Incorrect reference PcapDotNet.?.dll

Hello I try to use PcapDotNet dll but I can't add reference to my project. It doesn't matter which dll it is. PcapDotNet.Core.dll, PcapDotNet.Base.dll etc. I have yellow exclamation mark near this reference and can't use any methods from this dll. Ofc "using PcapDotNet.Core;" is underlined too and compiler shows me: "The type or namespac...