net2pcap is a packet capture
tool written by Philippe Biondi back in 2003. It
was designed to be as secure as possible in order to be run in hostile
environment. To do so, its code is minimalist without any complicate
feature, the result is 406 lines of simple C. On top of its security, it
is also the most reliable tool I have ever used on high traffic link
regarding packet loss, even dumpcap does not perform better.
Unfortunately, feature requests and bugs were lost in the middle of hundreds of spams in Phil’s bug tracker. To not lost patches, I have set up a net2pcap repository on github. This is not a fork, this is still maintained in collaboration with Phil, this is just a way to relieve him of the maintenance burden.
For those interested in the project, the following patches were already applied:
- Privileges drop
- Compatible with 64 bits architecture
- Large file support on x86_32
If you have any feature request or bug report, feel free to submit a ticket!