GN Nettest WinPharoah capture file

application/octet-stream

Safe

Magic Bytes

Offset: 0
1A 45 DF A3

The GN Nettest WinPharoah capture file is a proprietary binary format developed by GN Nettest for storing recorded network traffic data. This format was primarily used by the WinPharoah analyzer suite to log Ethernet packet transmissions for network diagnostics and protocol analysis across various infrastructure environments. Although now considered a legacy standard, the format remains readable by modern tools like Wireshark for the purpose of accessing and analyzing historical network data.

Extension

.eth

MIME Type

application/octet-stream

Byte Offset

0

Risk Level

Safe

Validation Code

How to validate .eth files in Python

Python 
def is_eth(file_path: str) -> bool:
    """Check if file is a valid ETH by magic bytes."""
    signature = bytes([0x1A, 0x45, 0xDF, 0xA3])
    with open(file_path, "rb") as f:
        return f.read(4) == signature

How to validate .eth files in Node.js

Node.js 
function isETH(buffer: Buffer): boolean {
  const signature = Buffer.from([0x1A, 0x45, 0xDF, 0xA3]);
  return buffer.subarray(0, 4).equals(signature);
}
Go 
func IsETH(data []byte) bool {
    signature := []byte{0x1A, 0x45, 0xDF, 0xA3}
    if len(data) < 4 {
        return false
    }
    return bytes.Equal(data[:4], signature)
}

API Endpoint

GET /api/v1/eth
curl https://filesignature.org/api/v1/eth

Related Formats

.ftr .tr1 .mte .mk3d .mka .mks .bli .mpg .otc