rtdump 1.0
Sponsored Links
rtdump 1.0 Ranking & Summary
File size:
0.42 MB
Platform:
Any Platform
License:
Freeware
Price:
Downloads:
1221
Date added:
2006-06-29
Publisher:
S. Krishnan
rtdump 1.0 description
Rtdump is a version of tcpdump modified to capture traffic on remote systems and networks. It enables you to run a packet capture program (the server) on a target computer, which will sniff the network traffic on that system, and uplink the captured packets to another host (the client), where the captured packets can be processed, analysed and archived . The rpcap system thus consists of two separate processes, the server (or agent) which captures network traffic on a remote system, and a client, which receives and processes these packets. The server code is a standalone executable program which uses the libpcap packet capture library to capture network traffic. The client is actually a library called librpcap, which is linked to a user program and used on the client system in a manner identical to libpcap.
The librpcap client library exposes a subset of the pcap API as defined in the pcap (3) manpage. The API is used in a manner identical to that of libpcap, so that any programs which do not use the libpcap functions not present in rpcap can directly link to rpcap in place of pcap. The API functions as a set of pcap-compatible wrapper functions over a Sun RPC interface to the remote server, which invoke the corresponding libpcap functionality on it.
At this time, rpcap has been built and tested only on Linux on Intel platforms. However, it should build on any UNIX like system that supports multithreading and has the RPC libraries and utilities available, so that it should be possible to build it on most systems. Please note however that there are a couple of bugs in the code (all my own!) that currently restrict it to little-endian systems. I will fix this ASAP.
The rtdump executable is just a slightly modified version of tcpdump. The difference is that rtdump links against librpcap rather than libpcap, and so requires some modifications in the initialization stuff. The main difference for end users is in the command line. Rtdump is invoked as follows:
rtdump
The remote host name option is of course the name or IP address of the remote host on which you desire to capture traffic.
For example, supposing you want to capture tcp traffic to your local machine (the client) from a remote machine called, say, fred, on freds eth1 interface, you should invoke rtdump thus:
rtdump -i eth1 tcp fred
The difference between a normal tcpdump invocation and this invocation is the addition of the remote host name. The capture data is dumped to the current host, i.e. the system on which rtdump has been invoked, By default rtdump uses the default rpcap port values of 21373 tcp and 61373 udp for communication with the server process, apart from the RPC process. If any of these defaults need to be changed, the
initialization code in rtdump.c has to be modified accordingly (check the init_rpcap function and the lines preceding it).
All other rtdump operational parameters are identical to tcpdump (it *is* tcpdump with a few minor modifications, after all!), so please check man (1) tcpdump for details.
Enhancements:
- Modified tcpdump to link to librpcap and compile as rtdump for remote capture
- renamed tcpdump.c to rtdump.c
- added librpcap initialization code to main() in rtdump.c
- added rpcap client host address routines to main() in rtdump.c
- added rpcap capture end function to cleanup() in rtdump.c
- added the str_utils.c and str_utils.h files for parsing client names (called in main() in rtdump.c)
The librpcap client library exposes a subset of the pcap API as defined in the pcap (3) manpage. The API is used in a manner identical to that of libpcap, so that any programs which do not use the libpcap functions not present in rpcap can directly link to rpcap in place of pcap. The API functions as a set of pcap-compatible wrapper functions over a Sun RPC interface to the remote server, which invoke the corresponding libpcap functionality on it.
At this time, rpcap has been built and tested only on Linux on Intel platforms. However, it should build on any UNIX like system that supports multithreading and has the RPC libraries and utilities available, so that it should be possible to build it on most systems. Please note however that there are a couple of bugs in the code (all my own!) that currently restrict it to little-endian systems. I will fix this ASAP.
The rtdump executable is just a slightly modified version of tcpdump. The difference is that rtdump links against librpcap rather than libpcap, and so requires some modifications in the initialization stuff. The main difference for end users is in the command line. Rtdump is invoked as follows:
rtdump
The remote host name option is of course the name or IP address of the remote host on which you desire to capture traffic.
For example, supposing you want to capture tcp traffic to your local machine (the client) from a remote machine called, say, fred, on freds eth1 interface, you should invoke rtdump thus:
rtdump -i eth1 tcp fred
The difference between a normal tcpdump invocation and this invocation is the addition of the remote host name. The capture data is dumped to the current host, i.e. the system on which rtdump has been invoked, By default rtdump uses the default rpcap port values of 21373 tcp and 61373 udp for communication with the server process, apart from the RPC process. If any of these defaults need to be changed, the
initialization code in rtdump.c has to be modified accordingly (check the init_rpcap function and the lines preceding it).
All other rtdump operational parameters are identical to tcpdump (it *is* tcpdump with a few minor modifications, after all!), so please check man (1) tcpdump for details.
Enhancements:
- Modified tcpdump to link to librpcap and compile as rtdump for remote capture
- renamed tcpdump.c to rtdump.c
- added librpcap initialization code to main() in rtdump.c
- added rpcap client host address routines to main() in rtdump.c
- added rpcap capture end function to cleanup() in rtdump.c
- added the str_utils.c and str_utils.h files for parsing client names (called in main() in rtdump.c)
rtdump 1.0 Screenshot
rtdump 1.0 Keywords
RPC
API
systems and networks
to capture
remote systems
capture traffic
rtdump
remote
capture
Tcpdump
rpcap
client
rtdump 1.0
Networking
System
Bookmark rtdump 1.0
rtdump 1.0 Copyright
WareSeeker periodically updates pricing and software information of rtdump 1.0 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of rtdump 1.0 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
Featured Software
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
Related Information
Related Software
tcpdump is a packet filtering library that works with libcap. Free Download
TCPDuP is a command-line networking utility that can proxy TCP service to a remote host:port pair. Free Download
CamRPC is a simple client/server solution to update/manage several webcams using a PHP enabled Web server. Free Download
ulxmlrpcpp is a library to call methods on a remote server. Free Download
XML-RPC is a C library for remote procerure call. Comunication is based on XML and uses http protocol. Free Download
Remote Growl is an extension to Glow which allows remote notification system for Max OS X (server) and any UNIX (client). Free Download
Crispy is a client for remote invocation for different kinds of services via proxies. Free Download
JSON-RPC-Java provides an RPC implementation that allows JavaScript DHTML Web applications to call remote methods. Free Download
Latest Software
Popular Software
Favourite Software
