Which technical characteristic do Ethereal/Wireshark, TCPDump, and Snort have in common?

seenagapeJuly 5, 2013

A.
They are written in Java.

B.
They send alerts to security monitors.

C.
They use the same packet analysis engine.

D.
They use the same packet capture utility.

4 Comments on “Which technical characteristic do Ethereal/Wireshark, TCPDump, and Snort have in common?”

Miguel says:

May 15, 2014 at 4:56 am

D

Log in to Reply
RoundHatHacker says:

May 2, 2015 at 2:59 am

Thanks Miguel…without you we were unable to get the answers of all the 877 questions..!!

Log in to Reply
jay says:

July 5, 2015 at 12:40 am

Is that packet capture utility WinPcap?

Log in to Reply
1. Joshua Dreifreund says:
  
  October 13, 2015 at 8:05 am
  
  pcap – libpcap/winpcap. The pcap is an API, written in C/C++ (technically C is a subset of C++, so anything written in C is also written in C++). It is implemented as a library – libpcap.
  Winpcap is a port of libpcap for Windows.
  
  Log in to Reply