opc0de
Reputation: 11768
Simpliest method for sniffing network activity
I have used packed inspection program such as WireShark and others and I have observed that most of them relay on the pcap driver.
Recently I stumbled over a source code written in C# witch intercepted traffic in a few lines of code. My questions are:
- Is pcap driver or something similar included in .NET ?
- Is possible to realize the same sniffing using traditional Windows API ?
- If yes what are the drawbacks and why installing pcap is preferred ?
Thank you
Upvotes: 1
Views: 180
Answers (1)
Balu
Reputation: 2457
Is possible to realize the same sniffing using traditional Windows API ?
Yes you can use the WFP call-out driver
If yes what are the drawbacks and why installing pcap is preferred ?
pcap installs the driver and corresponding user mode dll's , it is easy to use. Otherwise you have to write ur own filter driver and corresponding user mode code.
Upvotes: 1
Related Questions
- C# - Capturing Network Traffic
- Capture and edit TCP/UDP packets in C#
- Packet Data Sniffing from ASP.NET
- How to sniff local outgoing network traffic in .NET without using PCap?
- Sniffer c# (outwar)
- Creating an effective packet sniffer in .NET
- Network packet interception
- c# - how to sniff packets in an app without relying on WinPCap?
- Detecting packet sniffer
- Which .NET library / wrapper do you recommend for sniffing packets?