Tag Archives | network-forensics

NetworkMiner v1.1 Released – Windows Packet Analyzer & Sniffer

September 20, 2011 | 13,859 views

NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates […]

Share3

Tweet22

+19

Share3

Shares 37

Tags: hacking-networks, network miner, network-forensics, network-security, network-sniffing, networkminer, packet-sniffer, passive network sniffer, windows network sniffer, windows packet capture tool, windows packet sniffer

Posted in: Forensics, Hacking Tools, Network Hacking, Windows Hacking | Add a Comment

Sagan – Real-time System & Event Log (syslog) Monitoring System

July 22, 2010 | 13,986 views

Softwink announces the release of Sagan, the ultimate in Syslog monitoring. Sagan can alert you when events are occurring in your syslogs that need your attention right away, in real time! Sagan is a multi-threaded, real time system- and event-log monitoring system, but with a twist. Sagan uses a “Snort” like rule set for detecting […]

Tweet5

Shares 5

Tags: event log monitoring, Forensics, log security, Network Hacking, network-forensics, network-security, real-time system log monitoring, sagan, softwink, syslog, syslog monitoring

Posted in: Countermeasures, Forensics, Network Hacking, Security Software | Add a Comment

Trafscrambler – Anti-sniffer/IDS Tool

August 27, 2009 | 7,605 views

Trafscrambler is an anti-sniffer/IDS LKM(Network Kernel Extension) for OSX, licensed under BSD. Features Injection of packets with bogus data and with randomly selected bad TCP cksum or bad TCP sequences Userland binary(tsctrl) for controlling trafscrambler NKE SYN decoy – sends out number of SYN pkts before the original SYN pkt TCP reset attack – sends […]

Share1

Shares 1

Tags: anti-sniffer, antisniffer, Countermeasures, Hacking Tools, Network Hacking, network-forensics, network-security, osx, osx anti-sniffer, osx ids, packet sniffer detection, trafscrambler

Posted in: Apple, Countermeasures, Forensics, Network Hacking | Add a Comment

sslsniff v0.6 Released – SSL MITM Tool

August 14, 2009 | 27,655 views

This tool was originally written to demonstrate and exploit IE’s vulnerability to a specific “basicConstraints” man-in-the-middle attack. While Microsoft has since fixed the vulnerability that allowed leaf certificates to act as signing certificates, this tool is still occasionally useful for other purposes. It is designed to MITM all SSL connections on a LAN and dynamically […]

Share1

Shares 1

Tags: hacking ssl, hacking tool, Network Hacking, network-forensics, network-security, ssl hacking tool, ssl mitm, ssl mitm tool, ssl security, ssl sniff, ssl sniffer, sslsniff

Posted in: Forensics, Hacking Tools, Network Hacking | Add a Comment

Xplico – Network Forensic Analysis Tool

August 10, 2009 | 19,830 views

The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is an open source Network Forensic […]

Share1

Shares 1

Tags: Hacking Tools, hacking-networks, network dissector, network forensic analysis tool, network forensics tool, Network Hacking, network-forensics, nfat, stream assembly, tcp stream assembler, traffic dissector, xplico

Posted in: Forensics, Hacking Tools, Network Hacking | Add a Comment

Wireshark 1.2.1 Released – Network Protocol Analyzer

July 27, 2009 | 9,664 views

Wireshark is the world’s foremost network protocol analyzer, and is the de facto (and often de jure) standard across many industries and educational institutions. Wireshark development thrives thanks to the contributions of networking experts across the globe. It is the continuation of a project that started in 1998. Many of you will know it as […]

Share1

Shares 1

Tags: cross platform packet sniffer, deep packet inspection, ethereal, free packet sniffer, Network Hacking, network packet inspection, network protocol analysis, network protocol analyzer, network-forensics, packet-sniffer, windows packet sniffer, wireshark

Posted in: Forensics, Network Hacking | Add a Comment

Honeysnap – Pcap Packet Capture File Parsing Tool

June 15, 2009 | 17,250 views

Honeysnap is designed to be a command-line tool for parsing single or multiple pcap data files and producing a ‘first-cut’ analysis report that identifies significant events within the processed data. This presents security analysts with a pre-prepared menu of high value network activity, aimed at focusing manual forensic analysis and saving significant incident investigation time. […]

Shares 0

Tags: decode packet capture, honey snap, honeysnap, Network Hacking, network-forensics, network-security, pcap data, pcap decoder, pcap file parser, pcap packet parsing tool, pcapy

Posted in: Hacking Tools, Network Hacking | Add a Comment

raWPacket HeX – Network Security Monitoring & Analysis LiveCD

August 13, 2008 | 11,532 views

HeX is a project aimed at the NSM (Network Security Monitoring) community for use by network security analysts. The developers believe that simplicity and analysis work flow logic must be enhanced and emphasized through-out the process of designing this liveCD. Not only have they carefully chosen all the necessary applications and tools to be included […]

Shares 0

Tags: digital-forensics, hacking-networks, hex, linux-livecd, livecd, Network Hacking, network monitoring livecd, network security analysis, network security livecd, network security monitoring, network-analysis, network-forensics, nsm, nsm livecd, packet monkeys, packet sniffing, rawpacket, security-livecd, traffic-analysis

Posted in: Forensics, Hacking Tools, Network Hacking | Add a Comment

Wireshark v1.0.0 Released – Cross Platform Graphical Packet Sniffer

April 2, 2008 | 10,247 views

After nearly 10 years of developement Wireshark (formely known as Ethereal) has finally reached version 1! For those that don’t know, Wireshark is the world’s foremost network protocol analyzer, and is the de facto (and often de jure) standard across many industries and educational institutions. Wireshark development thrives thanks to the contributions of networking experts […]

Shares 0

Tags: ethereal, Hacking Tools, network protocol analyzer, network-forensics, network-security, network-sniffing, packet-sniffer, security-tools, wireshark

Posted in: Hacking Tools, Network Hacking, Security Software | Add a Comment

Chaosreader – Trace TCP/UDP Sessions from tcpdump

November 28, 2007 | 23,339 views

A freeware tool to trace TCP/UDP sessions and fetch application data from snoop or tcpdump logs. This is a type of “any-snarf” program, as it will fetch telnet sessions, FTP files, HTTP transfers (HTML, GIF, JPEG), SMTP emails and so on from the captured data inside network traffic logs. Similar to tcpflow which we mentioned […]

Share4

Shares 4

Tags: chaos-reader, chaosreader, Network Hacking, network-analysis, network-forensics, network-tracing, tcp-forensics, tcp-tracing, tcpdump