Re: edit and replay network traffic question

[Christian Ehlen <christian.ehlen () gmx de>]

Hi Serg,

for capturing purposes use a sniffer which can save packet dumps in
pcap-binary form. (tcpdump, windump, ethereal/wireshark, packetyzer, ...).

After you've captured the desired packets you can modify the pcap-
dump with tools like: tcprewrite (tcpreplay packet), netdude or with
the built-in manipulation-tools of the ethereal/wireshark package.

Now you can retransmit/replay the (un)modified packets on the network
with tools like tcpreplay/tcpfire.

Netdude is gui-based, some of the sniffers run natively under Microsoft
Windows and tcpreplay is able to run under Microsoft/Cygwin.

Have fun,
Christian

-- 
OpenPGP signed + encrypted messages welcome
key::fingerprint = BFBE 3FD4 0C8B AA45 F6B6  6962 2FE7 A299 4675 1715


Serg B wrote:
> Hi All,
>
> Can anybody recommend an article (maybe some Windows based tools)
> regarding network traffic capture and replay. Especially if I want to
> edit some of data before the traffic is sent/replayed.
>
>
>    Thanks,
>       Serg
>
> ------------------------------------------------------------------------
> This list is sponsored by: Cenzic
>
> Need to secure your web apps NOW?
> Cenzic finds more, "real" vulnerabilities fast.
> Click to try it, buy it or download a solution FREE today!
>
> http://www.cenzic.com/downloads
> ------------------------------------------------------------------------
>   


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------