Welcome to OStack Knowledge Sharing Community for programmer and developer-Open, Learning and Share
Welcome To Ask or Share your Answers For Others

Categories

0 votes
528 views
in Technique[技术] by (71.8m points)

portability - Wireshark with Libpcap (or WinPcap) portable (without Admin rights

The portable version of wireshark from: https://www.wireshark.org/download.html works fine on my windows 10, but doesn't include portable capturing triber Libpcap or WinPcap.

On the Npcap page https://nmap.org/npcap/ it is written: "Libpcap API: Npcap uses the excellent Libpcap library, enabling Windows applications to use a portable packet capturing API and so indeed on the Libpcap library page https://www.tcpdump.org/ there is the portable C/C++ Libpcap library available.

How can I use the C/C++ Libpcap library within Wireshark or with Java (pcap4j)? I downloaded it and it consists mainly of *.h files.

Thanks for any advices.

question from:https://stackoverflow.com/questions/65874408/wireshark-with-libpcap-or-winpcap-portable-without-admin-rights

与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome To Ask or Share your Answers For Others

1 Answer

0 votes
by (71.8m points)

How can I use the C/C++ Libpcap library within Wireshark

If you're on a UN*X, libpcap is usually shipped as part of the operating system, so it should Just Work.

If you're on Windows, you need a version of libpcap that's made to work on Windows. That's what Npcap is.

If you want to capture traffic on Windows, you will have to install Npcap; you can't just run a Wireshark from a flash drive or other medium containing a portable version of Wireshark without installing anything, you will have to install Npcap on your computer.

I downloaded it and it consists mainly of *.h files.

You downloaded the source code, which isn't directly usable. It has to be compiled - and installed.


与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome to OStack Knowledge Sharing Community for programmer and developer-Open, Learning and Share
Click Here to Ask a Question

...