For many years, WinPcap has been recognized as the industry-standard tool for link-layer network access in Windows environments, allowing applications to capture and transmit network packets …

Introduction This Manual describes the programming interface and the source code of WinPcap. It provides detailed descriptions of the functions and structures exported to programmers, along with …

The functions used to filter packets are pcap_compile () and pcap_setfilter (). pcap_compile () takes a string containing a high-level Boolean (filter) expression and produces a low-level byte code that can …

Flushes the output buffer to the ``savefile,'' so that any packets written with pcap_dump () but not yet written to the ``savefile'' will be written. -1 is returned on error, 0 on success.

Include the file pcap.h at the beginning of every source file that uses the functions exported by library. If your program uses Win32 specific functions of WinPcap, remember to include WPCAP among the …

PCAP_IF_ interface flags. Currently the only possible flag is PCAP_IF_LOOPBACK, that is set if the interface is a loopback interface. Definition at line 153 of file incs/pcap.h.

Oct 19, 2009 · The problem is due to the fact that the standard WinPcap include file "pcap.h" contains only a forward declaration of "struct pcap", but not the actual definition of it.

A filter is an ASCII string containing a filtering expression. pcap_compile () takes the expression and translates it in a program for the kernel-level packet filter.

While pcap_sendpacket () offers a simple and immediate way to send a single packet, send queues provides an advanced, powerful and optimized mechanism to send a collection of packets.

pcap_compile_nopcap () is similar to pcap_compile () except that instead of passing a pcap structure, one passes the snaplen and linktype explicitly. It is intended to be used for compiling filters for direct …