Winpcap Pcap.h

26.09.2019
69 Comments
Winpcap Pcap.h Average ratng: 3,7/5 3332 votes

Handling offline dump files In this lession we are going to learn how to handle packet capture to a file (dump to file). WinPcap offers a wide range of functions to save the network traffic to a file and to read the content of dumps - this lesson will teach how to use all of these functions. We'll see also how to use the kernel dump feature of WinPcap to obtain high-performance dumps ( NOTE: At the moment, due to some problems with the new kernel buffer, this feature has been disabled).

The-tcpdump-group / libpcap. Pull requests 14. # ifndef lib_pcap_pcap_h. WinPcap waits for the arrival. Pcap.h Go to the documentation of this file. $Header: /usr/cvsroot_private/winpcap/dox/libpcap/incs/pcap.h,v 1.5 2005/11/30 21:48:23 gianlucav Exp $.

Winpcap

The format for dump files is the libpcap one. This format contains the data of the captured packets in binary form and is a standard used by many network tools including WinDump, Ethereal and Snort. Saving packets to a dump file First of all, let's see how to write packets in libpcap format. The following example captures the packets from the selected interface and saves them on a file whose name is provided by the user.

. pcap.h File Reference #include #include #include Data Structures struct Header of a libpcap dump file. Struct Header of a packet in the dump file.

Struct Structure that keeps statistical values on an interface. Struct Item in a list of interfaces, used. Struct Representation of an interface address, used. Defines #define 2 Major libpcap dump file version.

#define 4 Minor libpcap dump file version. #define 256 Size to use when allocating the buffer that contains the libpcap errors. #define 0x00000001 interface is loopback #define 0 Capture mode, to be used when calling.

Fatal Error: Pcap.h: No Such File Or Directory

Incoming

Winpcap Capture Driver

#define 1 Statistical mode, to be used when calling. Typedefs typedef int 32-bit integer typedef uint 32-bit unsigned integer typedef pcap Descriptor of an open capture instance. This structure is opaque to the user, that handles its content through the functions provided by wpcap.dll. Typedef pcapdumper libpcap savefile descriptor. Typedef Item in a list of interfaces, see. Typedef Representation of an interface address, see. Copyright (c) 2002-2005 Politecnico di Torino.

Pcap.h File

Copyright (c) 2005-2007 CACE Technologies. All rights reserved.