This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

can tcpdump work in windows?

0

Does TCPDUMP work in windows?

asked 20 Mar '12, 03:34

Alice's gravatar image

Alice
1333
accept rate: 0%


2 Answers:

3

Tcpdump on Windows is called WinDump.

And apparently there is also at least one commercially available version of tcpdump for Windows. See the MicroOLAP TCPDUMP for Windows 3.9.8 page for more details.

Wireshark also provides other command-line packet capture tools that you might find useful as well, such as dumpcap, as Jasper already mentioned, and tshark.

If you're looking for Windows packet capture solutions in general, and not necessarily just command-line sniffer solutions, then you could also try Microsoft Network Monitor, or a number of other tools as well. Finally, you can use Wikipedia's Comparison of packet analyzers page to quickly find many analyzers that run on Windows and rather quickly and easily compare them.

answered 20 Mar '12, 08:00

cmaynard's gravatar image

cmaynard ♦♦
9.4k1038142
accept rate: 20%

edited 22 Mar '12, 16:21

1

You can just use dumpcap.exe that comes with Wireshark, it basically does the same as tcpdump. You'll find it in the Wireshark installation directory, and dumpcap -h will give you a help screen.

answered 20 Mar '12, 03:53

Jasper's gravatar image

Jasper ♦♦
23.8k551284
accept rate: 18%