pcap基础(1)
来源:互联网 发布:数据安全防护建设方案 编辑:程序博客网 时间:2024/05/16 17:49
#include <pcap.h>
#include <stdio.h>
#include <stdlib.h>
void packet_handler(u_char *param, const struct pcap_pkthdr *header, const u_char *pkt_data);
int main()
{
pcap_t *pH;
char errbuf[PCAP_ERRBUF_SIZE];
// FILE * hand = fopen("./dump.txt", "w+");
pcap_dumper_t * dumpF = NULL;
char *fileName = "./dump.txt";
if((pH = pcap_open_live("eth0", 65536, 0, 1000, NULL)) == NULL){
printf("\nUnable to open the adapter.%s is not supported by WinPcap\n", "eth0");
return -1;
}
printf("create the dump file %s...\n", fileName);
dumpF = pcap_dump_open(pH, fileName);
if(NULL == dumpF){
// printf("Error: %s\n", pH->errbuf);
return 255;
}
printf("start to listen %s... \n", "eth0");
pcap_loop(pH, 10, packet_handler, (u_char*)dumpF);
printf("end listening...\n");
pcap_dump_close(dumpF);
return 0;
}
void packet_handler(u_char *param, const struct pcap_pkthdr *header, const u_char *pkt_data)
{
pcap_dump(param, header, pkt_data);
return;
#include <stdio.h>
#include <stdlib.h>
void packet_handler(u_char *param, const struct pcap_pkthdr *header, const u_char *pkt_data);
int main()
{
pcap_t *pH;
char errbuf[PCAP_ERRBUF_SIZE];
// FILE * hand = fopen("./dump.txt", "w+");
pcap_dumper_t * dumpF = NULL;
char *fileName = "./dump.txt";
if((pH = pcap_open_live("eth0", 65536, 0, 1000, NULL)) == NULL){
printf("\nUnable to open the adapter.%s is not supported by WinPcap\n", "eth0");
return -1;
}
printf("create the dump file %s...\n", fileName);
dumpF = pcap_dump_open(pH, fileName);
if(NULL == dumpF){
// printf("Error: %s\n", pH->errbuf);
return 255;
}
printf("start to listen %s... \n", "eth0");
pcap_loop(pH, 10, packet_handler, (u_char*)dumpF);
printf("end listening...\n");
pcap_dump_close(dumpF);
return 0;
}
void packet_handler(u_char *param, const struct pcap_pkthdr *header, const u_char *pkt_data)
{
pcap_dump(param, header, pkt_data);
return;
}
====================================================================================================================================
gcc /usr/lib/pcap.o -lpcap a.c
====================================================================================================================================
- pcap基础(1)
- pcap基础(二)
- pcap基础(三)
- pcap
- PCAP
- TCPDUMP/LIBPCAP 3-PCAP 中文手册(1)
- Wireshark(Etherea)的Pcap文件格式分析1
- pcap linktype 101的报文转为linktype 1的报文
- TCPDUMP/LIBPCAP 3-PCAP's MAN手册(1)
- Pcap研究
- Pcap程序设计
- pcap文件格式
- PCAP文件格式
- Pcap程序设计
- Pcap程序设计
- pcap研究
- Pcap程序设计
- pcap文件格式
- sleep和wait有什么区别
- 今生,你我永隔一江水
- 原始套接字SOCK_RAW
- Android App: 使用Android 版Gmail App,更快地回复和搜索
- 今生,你我永隔一江水
- pcap基础(1)
- 限制DBA级别的用户在任意表空间上建表
- 如何去除Android布局文件xml中的斜体样式
- 001.android环境搭建(集成的IDE搭建开发环境)
- 做最美的自己
- uccx脚本编辑时,属性报错问题和“java.lan.nullpointer ”的解决
- 父元素与子元素之间的margin问题(css hack)
- Debian下用samba实现windows与linux文件共享(同事的blog,拿来备份)
- 今生,你我永隔一江水