Packetsquare
Encyclopedia
PacketSquare is a free and open-source pcap
-based network protocol testing tool. It is used for testing network devices
(IDS/IPS, firewall
, routers switches
etc.,), network
troubleshooting, analysis, software and communications protocol
development, and education.
Currently PacketSquare-CapEdit runs on Linux
, using the GTK+
widget toolkit
to implement its user interface, and written in C
. Released under the terms of the GNU General Public License
v3, PacketSquare-CapEdit is free software
.
and replaying. In addition to editing and replaying it supports many features for extrapolation of captured traffic.
Pcap
In the field of computer network administration, pcap consists of an application programming interface for capturing network traffic...
-based network protocol testing tool. It is used for testing network devices
Computer networking device
'Computer networking devices are units that mediate data in a computer network. Computer networking devices are also called network equipment, Intermediate Systems or InterWorking Unit...
(IDS/IPS, firewall
Firewall (computing)
A firewall is a device or set of devices designed to permit or deny network transmissions based upon a set of rules and is frequently used to protect networks from unauthorized access while permitting legitimate communications to pass....
, routers switches
Network switch
A network switch or switching hub is a computer networking device that connects network segments.The term commonly refers to a multi-port network bridge that processes and routes data at the data link layer of the OSI model...
etc.,), network
Computer network
A computer network, often simply referred to as a network, is a collection of hardware components and computers interconnected by communication channels that allow sharing of resources and information....
troubleshooting, analysis, software and communications protocol
Communications protocol
A communications protocol is a system of digital message formats and rules for exchanging those messages in or between computing systems and in telecommunications...
development, and education.
Currently PacketSquare-CapEdit runs on Linux
Linux
Linux is a Unix-like computer operating system assembled under the model of free and open source software development and distribution. The defining component of any Linux system is the Linux kernel, an operating system kernel first released October 5, 1991 by Linus Torvalds...
, using the GTK+
GTK+
GTK+ is a cross-platform widget toolkit for creating graphical user interfaces. It is licensed under the terms of the GNU LGPL, allowing both free and proprietary software to use it. It is one of the most popular toolkits for the X Window System, along with Qt.The name GTK+ originates from GTK;...
widget toolkit
Widget toolkit
In computing, a widget toolkit, widget library, or GUI toolkit is a set of widgets for use in designing applications with graphical user interfaces...
to implement its user interface, and written in C
C (programming language)
C is a general-purpose computer programming language developed between 1969 and 1973 by Dennis Ritchie at the Bell Telephone Laboratories for use with the Unix operating system....
. Released under the terms of the GNU General Public License
GNU General Public License
The GNU General Public License is the most widely used free software license, originally written by Richard Stallman for the GNU Project....
v3, PacketSquare-CapEdit is free software
Free software
Free software, software libre or libre software is software that can be used, studied, and modified without restriction, and which can be copied and redistributed in modified or unmodified form either without restriction, or with restrictions that only ensure that further recipients can also do...
.
Functionality
PacketSquare-CapEdit works by editing protocol fields of the saved packet capture filePcap
In the field of computer network administration, pcap consists of an application programming interface for capturing network traffic...
and replaying. In addition to editing and replaying it supports many features for extrapolation of captured traffic.
History
PacketSquare is an open source community started in April 2010 by Vijay Mohan, Sushant Gupta and Anant Dixit for developing computer network testing tools. The Community is currently working on CapEdit, used for testing wide range of network security and monitoring products.Features
- Currently supports pcapPcapIn the field of computer network administration, pcap consists of an application programming interface for capturing network traffic...
standard packet capture format, as used by tcpdumpTcpdumptcpdump is a common packet analyzer that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached...
, WiresharkWiresharkWireshark is a free and open-source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education...
, and other programs. - Protocols supported: Ethernet II, VLANVirtual LANA virtual local area network, virtual LAN or VLAN, is a group of hosts with a common set of requirements that communicate as if they were attached to the same broadcast domain, regardless of their physical location...
, MPLSMultiprotocol Label SwitchingMultiprotocol Label Switching is a mechanism in high-performance telecommunications networks that directs data from one network node to the next based on short path labels rather than long network addresses, avoiding complex lookups in a routing table. The labels identify virtual links between...
, ARPAddress Resolution ProtocolAddress Resolution Protocol is a telecommunications protocol used for resolution of network layer addresses into link layer addresses, a critical function in multiple-access networks. ARP was defined by RFC 826 in 1982. It is Internet Standard STD 37...
, IPv4IPv4Internet Protocol version 4 is the fourth revision in the development of the Internet Protocol and the first version of the protocol to be widely deployed. Together with IPv6, it is at the core of standards-based internetworking methods of the Internet...
, IPv6IPv6Internet Protocol version 6 is a version of the Internet Protocol . It is designed to succeed the Internet Protocol version 4...
, ICMPv4, IGMPv3, GREGeneric Routing EncapsulationGeneric Routing Encapsulation is a tunneling protocol developed by Cisco Systems that can encapsulate a wide variety of network layer protocols inside virtual point-to-point links over an Internet Protocol internetwork.-Overview:...
, IP-in-IP, UDP and TCP. - Protocol field value modification.
- Packet deletion.
- Packet duplication.
- Packet reordering.
- Fragmentation of packets.
- VLAN, MPLS tags can be added to the packets.
- TCP and UDP stream-based field value modification.
- IPIP addressAn Internet Protocol address is a numerical label assigned to each device participating in a computer network that uses the Internet Protocol for communication. An IP address serves two principal functions: host or network interface identification and location addressing...
and MACMAC addressA Media Access Control address is a unique identifier assigned to network interfaces for communications on the physical network segment. MAC addresses are used for numerous network technologies and most IEEE 802 network technologies, including Ethernet...
address find and replace. - Auto checksum for IP, ICMPInternet Control Message ProtocolThe Internet Control Message Protocol is one of the core protocols of the Internet Protocol Suite. It is chiefly used by the operating systems of networked computers to send error messages indicating, for example, that a requested service is not available or that a host or router could not be...
, IGMPInternet Group Management ProtocolThe Internet Group Management Protocol is a communications protocol used by hosts and adjacent routers on IP networks to establish multicast group memberships....
, TCPTransmission Control ProtocolThe Transmission Control Protocol is one of the core protocols of the Internet Protocol Suite. TCP is one of the two original components of the suite, complementing the Internet Protocol , and therefore the entire suite is commonly referred to as TCP/IP...
and UDPUser Datagram ProtocolThe User Datagram Protocol is one of the core members of the Internet Protocol Suite, the set of network protocols used for the Internet. With UDP, computer applications can send messages, in this case referred to as datagrams, to other hosts on an Internet Protocol network without requiring...
protocols. - Interface selection for sending packets.
- Option for sending a single selected packet or all packets.
- Pcap edit and replay.