The record can be done by:
- or local agents
- Packet analysis: After being captured, a packet analysis may be performed to get insight.
- measure bandwidth used on individual machines and routers.
Npcap / Window
Npcap is a drop-in replacement for winpcap in most applications.
WinDump 2) is the Windows version of tcpdump
ngrep (network grep) is a network packet analyzer written by Jordan Ritter. It has a command-line interface and relies upon the pcap library and the GNU regex library.
- A Java library for capturing, crafting, and sending packets. https://www.pcap4j.org/
netcap (XP and 2003 support tools)
nmcap is part of Netmon 3.x.
Old, wireshark based. https://sourceforge.net/projects/packetyzer/
tcpdump is a command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture.
HTTP sniffers are HTTP proxy that record the HTTP request and response while they pass through them.