In this section, you will learn the basics for reading pcap files. PCAP (Packet CAPture) refers to the API that allows you to capture network packets for processing. The PCAP format is a standard and is used by practically all network-analysis tools, such as TCPDump, WinDump, Wireshark, TShark, and Ettercap.