Which technical characteristic do Ethereal/Wireshark, TCPDump, and Snort have in common?
A.
They are written in Java.
B.
They send alerts to security monitors.
C.
They use the same packet analysis engine.
D.
They use the same packet capture utility.
A bit of a stretch but OK
libpcap
winpcap on windows
“The port of tcpdump for Windows is called WinDump”
– https://en.wikipedia.org/wiki/Tcpdump