摘要
对网络数据包进行分析是入侵检测技术通常采用的方法,Winpcap提供了Windows平台下捕获数据包的功能,使用vc6.0开发工具结合Winpcap开发包可以方便的在Windows平台下捕获网络数据包,包捕获模块采用线程实现,可以提高捕获效率。文中给出了包捕获的详细设计方案和捕获流程,对捕获原理进行了简单介绍和分析。
Analyze the network packets in common use to intrusion detection technology,The Winpcap provide the technique of the capturing network packets on Windows platform,Use the VC6.0 tool and Winpcap empolder packet can capturing the network packets on Windows platform easiest,The capturing network packets model make use of the thread technique,improve the capturing efficiency.This paper provide the detailed design framework and capturing flow, introduce and analyze the capture elements in brief.
作者
廖敏
吴文庆
LIAO Min,WU Wen-qing (Guangdong Technical College of Water Resources and Electric Engineering, Guangzhou 510635, China)
出处
《电脑知识与技术》
2008年第4期28-30,34,共4页
Computer Knowledge and Technology
