| HN Mirror

Y	Hacker News new \| ask \| show \| jobs


	by Someone1234 1186 days ago
	The sockets API is a Windows API, and Wireshark does not use it. Instead it uses Npcap, a custom kernel driver. A raw socket allows creation/consumption of bespoke packet types (i.e. not Tcp/Udp). In this case ICMP.