Blue-Ray DRM Cracked Already? » « Microsoft’s Live OneCare the WORST Anti-Virus Solution 
PReplay – A pcap Network Traffic Replay Tool for Windows
Darknet spilled these bits on March 8th 2007 @ 4:39 am

There are not many good tools for replaying traffic, most people use WireShark (formely known as Ethereal) for capturing the traffic, but what happens if you want to take that capture and reply it over the wire?

Someone has this problem so they decided to code their own solution, thankfully for us! There are quite a few tools to do this for *nix based systems but none for Windows, so here we go, a traffic replay tool for the Windows platform!

PReplay is a utility to replay captured data over the network, its main feature is that it will record the time difference between two packets (not very accurately but it works for micro/millisecond difference) it reads the capture file and then determines the time difference for the next packet.

You can give list of capture file which you want to send in the Preplay.ini in the [SendingFileName] section as below:

1=IPDump.cap
2=IPDump2.cap

Semicolon (;) is used for commenting a line you don’t want the program to read, so you can
comment out the file name which you don’t want to send like this:

[SendingFileName]
1=IPDump.cap
;2=IPDump2.cap

It will not send 2nd file.

SendingFilePath, here you can specify the directory which contains the captured files.

You can download the tool here:

PReplay

This is version 1.1 which has a few fixes such as the ability to change the MAC and IP address of the gateway and client machine.

Post to Twitter Post to Delicious Post to Digg Post to Facebook Post to StumbleUpon

Tags:  ,  ,  ,  ,  ,  ,  ,  ,  ,  ,  ,  ,  ,  

rss Subscribe to Darknet RSS Feed rss

Stored in: Hacking Tools, Network Hacking, Security Software, Windows Hacking

Related Posts:
- NetworkMiner – Passive Sniffer & Packet Analysis Tool for Windows
- Xplico – Network Forensic Analysis Tool
- Using the capture command in a Cisco Systems PIX firewall.
- Honeysnap – Pcap Packet Capture File Parsing Tool
- Chaosreader – Trace TCP/UDP Sessions from tcpdump
- TCPReplay suite 3.0.beta10. Released

| 18,442 views |

comments are closed
  1. Adminspotting.net » Links for March 08, 2007
    pingback

    [...] PReplay – A pcap Network Traffic Replay Tool for Windows » [...]

  2. Tim Abell
    October 15th, 2007 | 10:57 am

    I downloaded the preplay source from CVS, but it wouldn’t compile for me on Ubuntu (possibly a libnet versioning problem).

    I found tcpreplay is available in the repos so will be trying that instead.
    http://tcpreplay.synfin.net/trac/

  3. secgeek
    December 11th, 2007 | 10:37 am

    hi tim,
    preplay is for windows only.i thik u have downloaded the wrong source from cvs?as tht was a diffrent project i think.
    you can get the latest one here:-
    http://secgeeks.com/preplay_1_1.html

  4. RaSchi
    January 31st, 2008 | 6:57 pm

    I just tried the download link you give here and I also tried a search on secgeeks.com but all of the links to the ZIP file I found were broken links (404…). Is there still a version of PReplay available anywhere?

  5. Darknet
    January 31st, 2008 | 8:04 pm

    I can’t find a link, if anyone has it you can send it to me and I’ll upload it here. Perhaps try e-mailing secgeek too.

    Let me know if you have any luck.

  6. Radhakrishna
    July 6th, 2008 | 10:53 am

    it is still available….check out this link

    http://www.secgeeks.com/preplay_1_1.html
    http://secgeeks.com/PReplay.zip

    thanks.

  7. Darknet
    July 7th, 2008 | 6:11 am

    I’ve updated to the post to reflect the new download location, this software is available for download again.

Sitemap - ShaolinTiger - DigiSniper - Digital Photography
Shutter Asia Photography Forum - We Ate This