Is there a Windows tool for capture and playback of modified UDP packets?

windows udp packet packet-capture
26,617

Solution 1

The BitTwist (http://bittwist.sourceforge.net) editor commandline program (bittwiste) allows you to change the destination IP address (and port number) amongst other things.

See a similar question (and worked answer) at the Super User site: Replay UDP Packet Capture

Solution 2

You mention Colasoft Packet Player and it sounded like a useful tool, so I checked it out. While checking their site I found they also have Packet Builder.

It seems this tool can import pcap files (and some other formats) and edit them. It can then export the edited packets again, but only to Colasoft Capsa Packet files (Colasoft's own capture file format). But that should not be a problem as Packet Player is be able to read their own format.

Unfortunately it seems there is no way to edit multiple packets at the same time, so it's a tedious process to edit a lot of packets.

Solution 3

I use a hex editor to do a global search and replace on the PCAP file to change the destination MAC and IP. For Unicast you need to change both - not just the IP.

You could change more than the addresses, but for quick-n-dirty it's OK.

Solution 4

Try out WinPCap which allows very low-level intercept and injection of packets. It is an open source project that many other stateful packet inspection programs (e.g. Ethereal) are based on.

Solution 5

I've found out that the tcprewrite tool provides editing capabilities to .pcap files. Unfortunately, it does not support Windows.

Share:
26,617
kshahar
Author by

kshahar

LinkedIn: https://www.linkedin.com/in/shaharkosti GitHub: https://github.com/kshahar

Updated on July 09, 2022

Comments

  • kshahar
    kshahar almost 2 years

    I'm looking for a tool (or a set of tools) for Windows that will perform the following:

    1. Capture UDP packets from a specific network interface to a file.
    2. Play a stream of packets from a file through a network interface.
    3. In addition to 2: replay the original packets to a different host than the original one.

    I've already got 1 and 2, but I can't find a tool to do 3.

    For capturing I can use Wireshark, for playback Colasoft Packet Player, but I couldn't find a way to change the host the packets are sent to.

    The tool should work on Windows XP SP2/3.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Wireshark won't pick up packets sent from localhost to localhost via network
How to determine which process is sending UDP packets once per hour?
Ensuring packet order in UDP
Windows UDP sockets: recvfrom() fails with error 10054
windows 7 block UDP broadcast message
Receive UDP packet datagrams in PHP
Sending UDP data including hex using VB.NET
Python raw socket listening for UDP packets; only half of the packets received
Create UDP to TCP bridge with socat/netcat to relay control commands for vlc media-player
What is a simple STUN test I can perform from a Windows machine?