A packet capture or pcap engine provides an application programming interface, or API, to capture traffic. Lisa Bock covers capture engines that Wireshark uses, including libpcap, WinPcap, AirPcap, and Npcap.
- To effectively capture and analyze traffic,…there must be a way to gather…the raw traffic from the network.…A packet capture, or PCAP, engine provides…an application programming interface to capture traffic.…Wireshark uses one of several capture engines,…libpcap, WinPcap, AirPcap, and Npcap.…Libpcap is a capture engine originally developed…for Unix-like operating systems,…and it's baked right into Snort, tcpdump, WinDump,…and other packet analyzers to grab packets…as they come off the network interface.…
A version of libpcap was adapted…for Windows, and is called WinPcap.…WinPcap is an industry standard…that has been around for many years.…It works well in a Windows environment,…specifically the Windows NT family.…WinPcap enables packet capture right from…a network interface, and presents it to Wireshark…before any processing is done by the operating system.…
WinPcap must be installed on…a Windows operating system to capture packets.…During the installation process,…Wireshark will look for a copy of WinPcap,…and prompt the user to install it if it's not present.…
Author
Released
11/14/2018- Tapping into the network
- Baselining the network
- Troubleshooting to discover the cause of a slow network
- Merging traffic
- Sanitizing packet captures
- Capture engines
- Optimizing packet captures
- Basic and advanced IO graphs
- TCP stream graphs
Skill Level Intermediate
Duration
Views
Related Courses
-
Wireshark: Malware and Forensics
with Lisa Bock1h 59m Intermediate
-
Introduction
-
Enhance your skills1m 5s
-
-
1. Tapping into the Stream
-
Enhance your skills2m 7s
-
Network architecture6m 41s
-
Tap into the network4m 20s
-
Baselining the network5m 6s
-
Restrictions and limitations6m 45s
-
Challenge1m 21s
-
Solution4m 15s
-
-
2. Solving Network Problems
-
Network congestion3m 24s
-
Case study: Spotify4m 12s
-
Case study: Multicast3m 55s
-
Merging traffic3m 16s
-
Sanitizing packet captures3m 33s
-
-
3. Capture Engines and Wi-Fi
-
Capture engines4m 22s
-
Install Npcap4m 59s
-
IEEE 802.11 overview4m 47s
-
802.11 packet types5m 14s
-
-
4. Command Line Capture
-
Optimize packet captures5m 7s
-
tshark and dumpcap2m 33s
-
text2pcap and capinfos4m 3s
-
capinfos and editcap3m 13s
-
-
5. IO and Stream Graphs
-
Basic IO graphs5m 59s
-
Conversations and endpoints5m 42s
-
TCP stream graphs6m 46s
-
Advanced IO graphs4m 35s
-
-
Conclusion
-
What's next?1m 13s
-
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.
CancelTake notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Capture engines