WinPcap and Security Tools

WinPcap, a free Windows port of the UNIX libpcap packet-capture library, has multiple uses.

Jason Fossen

December 14, 2003

1 Min Read
ITPro Today logo in a gray background | ITPro Today

WinPcap, a free Windows port of the UNIX libpcappacket-capture library, is also necessary to run Nmap, WinDump, and Snort onthe Windows platform. Nmap is a great free port scanner, and WinDump is theWindows version of tcpdump, a command-line protocol analyzer similar toTethereal. Snort is a popular open-source Intrusion Detection System (IDS). Youcan download Nmap from http://www.insecure.org/nmap, WinDump fromhttp://windump.polito.it, and Snort from http://www.snort.org/dl/binaries/win32. Be aware that the current version of WinPcapcan't capture 802.11 wireless packets in promiscuous mode; hence, Ethereal candisplay only the packets going to and from your own wireless adapter card.

Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like