Dice is a Windows program for decoding sniffer files. While Dice was written mainly to display the evidence and packet log files produced by BlackIce from Network Ice it also supports the following formats.
- General Network Sniffer files (*.enc)
- Microsoft Netmon files (*.cap)
- NetXRay files (*.cap)
- Windump/TCPDUMP files (*.acp;*.dmp)
Version 2.9.10
- New Protocol - LLDP
- Minor other changes and bug fixes
Download (849k) View Screen Shot
Using Dice with Windump
While Dice will read and format files created by a number of sniffer programs, it cannot be used to sniff your network on its' own. For that you need a separate sniffer program.
One solution is to use Windump. Windump is a port of the widely used Unix program TCPDUMP and can be downloaded from the following location: http://www.winpcap.org/windump You will also need to install WinPcap, a link to which can be found from at same location.
Once you have Windump installed the following command can be used to create a test file:
windump -w windump.acp -s 1518
Hit Ctrl-C to stop Windump after a few minutes and then load the output file (windump.acp) into Dice.
Contact me at: nigelt@bigfoot.com
