For many years, WinPcap has been recognized as the industry-standard tool for link-layer network access in Windows environments, allowing applications to capture and transmit …

Introduction This Manual describes the programming interface and the source code of WinPcap. It provides detailed descriptions of the functions and structures exported to programmers, along …

PCAP_IF_ interface flags. Currently the only possible flag is PCAP_IF_LOOPBACK, that is set if the interface is a loopback interface. Definition at line 153 of file incs/pcap.h.

Additionally, pcap_findalldevs_ex () can also return remote adapters and a list of pcap files that are located in a given local folder. The following sample provides an ifprint () function that …

While pcap_sendpacket () offers a simple and immediate way to send a single packet, send queues provides an advanced, powerful and optimized mechanism to send a collection of …

For simplicity and before starting the capture, we check the MAC layer with pcap_datalink () to make sure that we are dealing with an Ethernet network. This way we can be sure that the …

The functions used to filter packets are pcap_compile () and pcap_setfilter (). pcap_compile () takes a string containing a high-level Boolean (filter) expression and produces a low-level byte …

Introduction This Manual describes the programming interface and the source code of WinPcap. It provides detailed descriptions of the functions and structures exported to programmers, along …

The file is opened with pcap_open_offline (), then the usual pcap_loop () is used to sequence through the packets. As you can see, reading packets from an offline capture is nearly …

The parameters of this function are the same as a capture callback -- it takes an adapter descriptor and a couple of pointers that will be initialized and returned to the user (one to a …