Description: Tcpreplay is not a single tool, it is suit of tools and written by Aaron Turner for UNIX (and Win32 under Cygwin) operating systems. This tool is used to analyze previously captured traffic in libpcap format to test different network devices. We can do different type of thing using this tool like, classify traffic as client or server, rewrite Layer 2, 3 and 4 headers etc. This can also replay the traffic back onto the network and through other devices such as switches, routers, firewalls. Tcpreplay replays pcap file at arbitrary speed on the network. pcap(packet capture) consist of an application programming interface (API) for capturing network traffic. Unix like system implement pcap in the libpcap library. To replay first we need a pcap file. To replay a given pcap we need to specify the given pcap file and an interface to send the traffic out.
This video is simple demo of tcpreplay. Wireshark is used to explain the tool.
Source : livehacking from Youtube
Tags: TCPreplay ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
This is best tool for capturing traffic. Aaron Turner Developed Great tool.
I think this tool is for analyzing already captured traffic.
By the way wireshark is best for sniffing.
It can also replays pcap file at arbitrary speed.
This is very powerful tool for edit and replay captured network traffic.