Re: MIME type for libpcap (tcpdump -w)

[Guy Harris <guy () alum mit edu>]

On Nov 9, 2010, at 5:00 PM, Glen Turner wrote:

> 9. Applications which use this media type
> See RFC 4288, section 4.5
> [
> Libpcap, a C library to capture network packets for POSIX-like systems.
>
> Net::Pcap, Jpcap, python-libpcap, Ruby/Pcap are respectively Perl, Java,
> Python and Ruby bindings for libpcap.
>
> WinPcap, a port of libpcap for Microsoft Windows.
>
> Libpcap and WinPcap are in turn used by:
>
> Tcpdump, a command line tool to capture and display network packets.
>
> WinDump, a port of tcpdump to Microsoft Windows.
>
> Wireshark (formerly Ethereal), a graphical tool to capture, display and
> analyse network packets.
>
> Snort, a network intrusion detector.
>
> Many other programs which capture, display, analyse, manipulate and
> replay network traffic use this media format.

The current version of Microsoft Network Monitor can read pcap files, although that's not its native capture file 
format.  (I.e., it's not just open-source software that supports it.)

-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.