Network - Trace (Capture|Sniffer|Analyzer) Tool (Packet Analysis)
Table of Contents
About
Network traffic measurement can be done by:
- sniffing
- SNMP,
- WMI
- or local agents
to measure bandwidth used on individual machines and routers.
See also:
- Packet Analysis
Structure
- Network connections are associated to a process
Tools
Windows
- nmcap (part of Netmon 3.x)
- or netcap (XP and 2003 support tools)
- Ethereal,
- Packetyzer,
- Fiddler (Free) - Fiddler captures HTTP and HTTPS traffic
See NetworkSniffer
- TCPMon (deprecated)
- Charles (50 bucks)
Npcap
Npcap 1) is the Nmap Project's packet capture (and sending) library for Microsoft Windows. It implements the open Pcap API it is only used with Nmap, Wireshark.
Npcap is a drop-in replacement for WinPcap in most applications.
Windump
WinDump 2) is the Windows version of tcpdump
Linux
- ngrep (network grep) is a network packet analyzer written by Jordan Ritter. It has a command-line interface, and relies upon the pcap library and the GNU regex library.
Tcpdump
- tcpdump a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture.
Java
- A Java library for capturing, crafting, and sending packets. https://www.pcap4j.org/