Cybersecurity Prism - What is PCAP? Packet Capture or PCAP (also known as libpcap) is an application programming interface (API) that captures live network packet data from OSI model Layers 2-7. Unix-like
![Ben Hutchings on Twitter: "@b0rk According to the tcpdump man page this is "pcap filter syntax". BPF is the instruction set it's compiled to." / Twitter Ben Hutchings on Twitter: "@b0rk According to the tcpdump man page this is "pcap filter syntax". BPF is the instruction set it's compiled to." / Twitter](https://pbs.twimg.com/media/DyaUCjnUYAA5nPx.jpg)
Ben Hutchings on Twitter: "@b0rk According to the tcpdump man page this is "pcap filter syntax". BPF is the instruction set it's compiled to." / Twitter
![What is the correct PCAP filter in wireshark to capture all TCP traffic going to or from host 192.168.0.125 on port 25? - Skillset What is the correct PCAP filter in wireshark to capture all TCP traffic going to or from host 192.168.0.125 on port 25? - Skillset](https://skillset.s3.amazonaws.com/training/CEH%20videos/S01-05%20-%20Wireshark.jpg)