Packet Sniffer

Twin_One1 · April 17, 2004, 05:39 AM

What is a good, easy to use, free, packet sniffer or network moniter or whatever they are called?

RedPhoenix · April 17, 2004, 05:53 AM

http://www.ethereal.com

May also need Winpcap, the latest version with it.

Dyndrilliac · April 17, 2004, 08:57 AM

My favorite is WPE(Winsock Packet Editor). http://fly.to/mtc

hismajesty · April 17, 2004, 09:37 AM

I use WPE as well.

UserLoser. · April 17, 2004, 10:02 AM

CommView - Requires a key though

RedPhoenix · April 17, 2004, 10:24 AM

I finally got Ethereal to work on my Windows XP Pro with a 56k connection. Seems WinPcap 3.0 didn't have support at the time for it. WinPcap 3.1 adds support for PPP connections. Now after looking at the bnet packets from starcraft connecting. I'm still lost lol, gotta learn how to read the packets.

Can someone fill me in as to what these acronyms mean?

SYN
ACK
PSH
FIN

Tuberload · April 17, 2004, 12:58 PM

Quote from: RedPhoenix on April 17, 2004, 10:24 AM
Can someone fill me in as to what these acronyms mean?

SYN
ACK
PSH
FIN

Lookup "tcp flags"

Dari · April 17, 2004, 07:00 PM

you should put up a filter for tcp udp port 6112 and packetlen > 0 then u get only the packets with data and not the other for you useless protocol stuff ^^

Twin_One1 · April 20, 2004, 02:00 AM

Thanks.

Twin_One1 · April 21, 2004, 12:40 PM

WPE gave me an error on startup and the other one works fine. Only problem is I can't figure out what the values in the data are. Anyone know a tutorial or website or something that might help?

effect · April 21, 2004, 08:48 PM

Feanor wrote a very basic(?) one a while ago , try snooping around at www.clan-exile.com

Valhalla Legends Archive

Packet Sniffer

Twin_One1

RedPhoenix

Dyndrilliac

hismajesty

UserLoser.

RedPhoenix

Tuberload

Dari

Twin_One1

Twin_One1

effect