WinPcap 4.0

WinPcap 4.0 Screenshot WinPcap is the industry-standard tool for link-layer network access in Windows environments: WinPcap will allow programs to capture and transmit network packets bypassing the protocol stack, and has additional useful features, including kernel-level packet filtering, a network statistics engine and support for remote packet capture.

Developer:   CACE Technologies
      software by CACE Technologies →
Price:  0.00
License:   Freeware
File size:   0K
Language:   
OS:   Windows Vista (?)
Rating:   0 /5 (0 votes)

WinPcap is the industry-standard tool for link-layer network access in Windows environments: WinPcap will allow programs to capture and transmit network packets bypassing the protocol stack, and has additional useful features, including kernel-level packet filtering, a network statistics engine and support for remote packet capture.

WinPcap consists of a driver, that extends the operating system to provide low-level network access, and a library that is used to easily access the low-level network layers. This library also contains the Windows version of the well known libpcap Unix API.

Thanks to its set of features, WinPcap is the packet capture and filtering engine of many open source and commercial network tools, including protocol analyzers, network monitors, network intrusion detection systems, sniffers, traffic generators and network testers. Some of these tools, like Ethereal, Nmap, Snort, ntop are known and used throughout the networking community.

Winpcap.org is also the home of WinDump, the Windows version of the popular tcpdump tool. WinDump can be used to watch, diagnose and save to disk network traffic according to various complex rules.

WinPcap features
  • High performance. WinPcap implements all of the classic optimizations described in the packet capture literature (e.g., kernel-level filtering and buffering, context switch mitigation, partial packet copy), plus some original ones, like JIT filter compilation and kernel-level statistic processing. For these reasons, WinPcap outperforms other comparable approaches.
  • Popular. WinPcap is used as the network interface by many tools -- both free and commercial including protocol analyzers, network monitors, network intrusion detection systems, sniffers, traffic generators, network testers, etc. Some of these tools, like Ethereal, Nmap, Snort, WinDump, ntop are very well known in the networking community. WinPcap is downloaded thousands of times every day.
  • Tested and Reliable. Many users have contributed over the years in testing WinPcap on a wide range of platforms, and in finding the most subtle bugs. WinPcap developers are experienced Windows driver writers, and their approach to software development emphasizes rock-solid stability. Remember: a buggy driver means blue screens.
  • Easy to use for the final user. WinPcap is distributed as a single small executable that runs on every supported operating system. You launch the executable, and from that moment Windows is able to capture and send raw network traffic. It couldn't be easier.
  • Easy to use for the programmer. Every version of WinPcap comes with a developer's pack that includes documentation, libraries and include files needed to immediately start with your own new application. The developer's pack contains a set of sample programs ready to be compiled both with Visual Studio and Cygnus, and are available as excellent starting points.
  • Multi-platform. WinPcap is actively maintained on Windows NT, Windows 2, Windows XP and Windows Server 2003. WinPcap can also work on Windows 95, Windows 98 and Windows ME, but these OSes are not maintained any longer. Windows Vista has a preliminary support, with some features disabled.
  • Portable. WinPcap is completely compatible with libpcap. This means that you can use it to port your existing Unix or Linux tools to Windows. This also means that your Windows applications will be easily portable to Unix.
  • Well documented. The WinPcap manual documents the API and the internals in an easy-to-follow hyperlinked manner. The documentation includes a tutorial that takes you step-by-step through all of the features of WinPcap.

    tags kernel level  packet capture  capture and  like ethereal  ethereal nmap  nmap snort  tools like  network testers  traffic generators  ntop are  these tools  community winpcap  for the  

    WinPcap 4.0 screenshot


    Download WinPcap 4.0

     Download WinPcap 4.0


    Authors software

    WinPcap 4.0 WinPcap 4.0
    CACE Technologies

    WinPcap is the industry-standard tool for link-layer network access in Windows environments: WinPcap will allow programs to capture and transmit network packets bypassing the protocol stack, and has additional useful features, including kernel-level packet filtering, a network statistics engine and support for remote packet capture.

    Similar software

    WinPcap 4.0 WinPcap 4.0
    CACE Technologies

    WinPcap is the industry-standard tool for link-layer network access in Windows environments: WinPcap will allow programs to capture and transmit network packets bypassing the protocol stack, and has additional useful features, including kernel-level packet filtering, a network statistics engine and support for remote packet capture.

    York Network Trace 1.34 York Network Trace 1.34
    the sz development

    York Network Trace will show all the traffic in your network.

    SmartSniff 1.30 SmartSniff 1.30
    NirSoft Freeware

    SmartSniff will allow users you to capture TCP/IP packets that pass through your network adapter and view the captured data as sequence of conversations between servers and clients.

    BillSniff 1.0.1 BillSniff 1.0.1
    Krzysztof Wlodarczyk

    BillSniff is a network protocol analyzer (sniffer) that provides detailed information about current traffic, as well as overall protocol statistics and more.

    PacketStuff Network Toolkit 0.1 PacketStuff Network Toolkit 0.1
    BOBAH XPEHOB

    PacketStuff Network Toolkit contains a set of very well-known tools for network analysis, fingerprinting, traffic monitoring, etc.

    Astral II 2.0.0 Astral II 2.0.0
    3mu180r

    Protocol definitions are provided by www.

    VisualSniffer 2.0 VisualSniffer 2.0
    BVTech Inc

    VisualSniffer is a powerful packet capture tool and protocol analyzer (ip sniffer or packet sniffer) for Windows system.

    EtherSnoop Light 1.11 EtherSnoop Light 1.11
    Arechisoft

    EtherSnoop is a basic network sniffer, that will capture all packets going through the network, including dial-up connection or network Ethernet card.

    Securepoint Intrusion Detection System 1.0 Beta Securepoint Intrusion Detection System 1.0 Beta
    Securepoint GmbH

    The Securepoint Intrusion Detection System (SIDS) allows to analyse your network for intrusion detections.

    MZL & Novatech Traffic Statistics 1.2.0.1 MZL & Novatech Traffic Statistics 1.2.0.1
    MZL & Novatech TrafficStatistic

    MZL & Novatech TrafficStatistic makes it possible to view statistics on network usage and has it's focus on payment relevent information.

    Other software in this category

    Active Ports 1.4 Active Ports 1.4
    SmartLine Inc.

    Active Ports - easy to use tool that enables you to monitor all open TCP/IP and UDP ports on the local computer.

    PortPeeker 2.7.0.21 PortPeeker 2.7.0.21
    Binary Visions Inc.

    PortPeeker is a freeware utility for capturing network traffic for TCP, UDP or ICMP protocols (see Note below about ICMP traffic).

    FakeDaemon 1.99 FakeDaemon 1.99
    Bloodware

    FakeDaemon is an easy to use port listener, to trick attackers, also known as a honey pot.

    EtherSnoop Light 1.11 EtherSnoop Light 1.11
    Arechisoft

    EtherSnoop is a basic network sniffer, that will capture all packets going through the network, including dial-up connection or network Ethernet card.

    IP_NetStat 1.1.6 IP_NetStat 1.1.6
    IP Worx

    IP_NetStat - graphical network statistics showing open TCP/IP ports and their connections.