Skip to Main Content
This paper summarizes the structure of WinPcap and introduces the capture principle of Ethernet packets. Based on multithreading technology, WinPcap captures the network layer packets. The design and realization method are provided by this paper. The overall optimization of system has improved the ability of the packet capture and greatly reduced the rate of packet loss. Data contents of the captured packet will be carefully analyzed according to the layers of network protocol format (analysis of hexadecimal data of Ethernet frame net load). The design and research of system provides a theoretical basis for preventing hackers, network security, and intrusion detection technology.