如何拦截应用程序发送的数据包并检查其标头和内容？ [英] How to intercept packets sent by an application and check their header and content?

问题描述

我想知道如何截获某个应用程序发送的数据包，然后检查其中包含哪些数据包。
我需要一些建议该怎么做，因为我从未做过这样的事情，我想自己学习。

I'd like to know how can I intercept packets sent by a certain application and then to check what those packets contain. I need some advice what to do because I've never done such a thing and I want to learn by myself.

推荐答案

Pcap.Net

Pcap.Net是用C ++ / CLI和C＃编写的WinPcap的.NET包装。
它具有几乎所有WinPcap功能，并包括一个数据包解释框架。

Pcap.Net

Pcap.Net is a .NET wrapper for WinPcap written in C++/CLI and C#. It Features almost all WinPcap features and includes a packet interpretation framework.

SharpPcap是基于著名的pcap / WinPcap库的.NET环境的跨平台数据包捕获框架。它提供了一个API，用于使用任何.NET语言（例如C＃和VB.NET）捕获，注入，分析和构建数据包。

SharpPcap is a cross-platform packet capture framework for the .NET environment, based on the famous pcap / WinPcap libraries. It provides an API for capturing, injecting, analyzing and building packets using any .NET language such as C# and VB.NET.

它用于网络故障排除，分析，软件和通信协议开发以及培训。而且我认为这是我到目前为止使用的最通用的数据包嗅探器。

It is used for network troubleshooting, analysis, software and communications protocol development, and education. And I think it is the most versatile packet sniffer I used till now.

Fiddler是一个Web调试代理，它记录计算机和Internet之间的所有HTTP（S）通信。 Fiddler允许您检查流量，设置断点和 fiddle。
传入或传出数据。 Fiddler包括功能强大的基于事件的脚本子系统，并且可以使用任何.NET语言进行扩展。最近Fiddler被Telerik取代。但这仍然是免费的AFAIK。

Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet. Fiddler allows you to inspect traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended using any .NET language. Recently Fiddler has been overtook by Telerik. But it is still free AFAIK.

这篇关于如何拦截应用程序发送的数据包并检查其标头和内容？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！