Libpcap

Libpcap++ is a C++ wrapper for libpcap (the packet capture library), which provides a high level interface to packet capture systems. Platforms: *nix

Angst is an active sniffer, based on libpcap and libnet. Angst provides methods for aggressive sniffing on switched local area network environments. It dumps the payload of all the TCP packets received on the specified ports. Moreover, it implements methods for active sniffing. Angst currently... Platforms: *nix

Many people use PF_RING just as a ???*Nsbetter???*N? libpcap. PF_RING is much more than that, as it can significantly simplify the design of network monitoring applications as well better exploit modern multi-core architectures and network adapters. * he NetFlow-lite capability on Cisco... Platforms: *nix

pcapsipdump is libpcap-based SIP sniffer with per-call sorting capabilities. It writes SIP/RTP sessions to disk in a same format, as "tcpdump -w", but one file per SIP session (even if there is thousands of concurrent SIP sessions). Platforms: *nix

Nast is a packet sniffer and a LAN analyzer based on Libnet and Libpcap. It can sniff in normal mode or in promiscuos mode the packets on a network interface and log it. It dumps the headers of packets and the payload in ascii or ascii-hex format. You can apply a filter. The sniffed data can be... Platforms: *nix

tcpick is a textmode sniffer libpcap-based that can track, reassemble and reorder tcp streams. Tcpick is able to save the captured flows in different files or displays them in the terminal, and so it is useful to sniff files that are transmitted via ftp or http. It can display all the stream on... Platforms: *nix

jNetPcap project is a Java wrapper around the Libpcap network packet capture library. The low-level API is exposed in Java, which allows kernel buffer tuning, flags, and other features. All captured packet buffers are wrapped, not copied, in efficient java.nio.ByteBuffer and delivered to Java... Platforms: *nix

fwknop stands for the "FireWall KNock OPerator", and implements an authorization scheme based around Netfilter and libpcap that requires only a single encrypted packet in order to communicate various pieces of information including desired access through a Netfilter policy and/or complete... Platforms: *nix

PcapJoiner is a handy application that enables you to merge libpcap/wireshark files into a single pcap file. The capture files should be of the same type (libpcap or nanosecond libpcap) PcapJoiner enables two methods for joining captures files: · Chronologically - In this method the... Platforms: Windows, Windows Vista, 7, 7x64

PowerEdit Pcap is a small, simple, Java based application specially designed to offer you a libpcap-based protocol testing tool. This allows modification to your payload and increase/decrease/delete/add any content to any part of the pcap frames. for WindowsAll Platforms: Windows

Ikedectypt is a perl script to decrypt IKEv1 packets in libpcap formatted trace file.You can use Ethereal(http://www.ethereal.com) to analyze decrypted trace.Key information(first initialization vector, skeyid_e) is needed to be supplied by user. Platforms: Windows, Mac, Linux

libnetdude is a library for manipulating libpcap/tcpdump trace files. You may ask why this requires a new library. It provides abstractions on top of the libpcap paradigm that save developers a lot of time by focusing on the relevant parts of their applications. Moreover, libnetdude supports... Platforms: Windows, Mac, *nix, C/C++, BSD Solaris

tcpick is a textmode sniffer libpcap-based that can track, reassemble and reorder tcp streams. Tcpick is able to save the captured flows in different files or displays them in the terminal, and so it is useful to sniff files that are transmitted via ftp or http. It can display all the stream on... Platforms: Windows, Mac, *nix, C/C++, BSD Solaris

Phpcap was originally a light implementation of the libpcap which provides an acces to all the pcap functions, but it has been upgraded with a set of functions to break down, make and send custom network packets. The module is divided in two extensions, Phpcap and PktTool, phpcap just implements... Platforms: Windows, Mac, *nix, PHP, BSD Solaris

simplified object-oriented Python extension module for libpcap - the current tcpdump.org version, the legacy version shipping with some of the BSD operating systems, and the WinPcap port for Windows Platforms: Mac

Bit-Twist is a simple yet powerful libpcap-based Ethernet packet generator. It is designed to complement tcpdump, which by itself has done a great job at capturing network traffic. With Bit-Twist, you can now regenerate your captured traffic onto a live network! Packets are generated from tcpdump... Platforms: Mac

IPdump is a tool to generate detailed packet header dumps from packet traces in LBNL's libpcap format (such as generated by tcpdump). Platforms: *nix

tcpick is a textmode sniffer libpcap-based that can track, reassemble and reorder tcp streams. Tcpick is able to save the captured flows in different files or displays them in the terminal, and so it is useful to sniff files that are transmitted via ftp or http. It can display all the stream on... Platforms: *nix

Snort_inline is a modified version of Snort. It accepts packets from iptables, instead of libpcap. It uses new rule types to tell iptables if the packet should be dropped or allowed to pass based on the Snort rules. Platforms: *nix

Outback is an easy-to-use packet sniffer/packet analyzer. It provides logging to a file and offline reading. It is based on the libaries libnet an libpcap. Outback can analyze, means printing header info, UDP,TCP,ARP, ICMP, IGMP, DNS. So have fun! Platforms: *nix