NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates […]
network-sniffing
Tshark – Network Protocol Analyzer & Traffic Dumper
Tshark is actually part of the Wireshark package, and has some similar functionality. It does some cool stuff though so I thought it’s worthy of its own post. TShark is a network protocol analyzer. It lets you capture packet data from a live network, or read packets from a previously saved capture file, either printing […]
FTPXerox v1.0 – FTP File Transfer Sniffer
This is an old tool, but still useful. I saw someone asking for a tool to grab FTP files from the wire without using something like Wireshark, which brought me to this tool – FTPXerox. FTPXerox grabs files that are transferred across the network using the FTP protocol. It was written to demonstrate the fact […]
Wireshark v1.0.0 Released – Cross Platform Graphical Packet Sniffer
[ad] After nearly 10 years of developement Wireshark (formely known as Ethereal) has finally reached version 1! For those that don’t know, Wireshark is the world’s foremost network protocol analyzer, and is the de facto (and often de jure) standard across many industries and educational institutions. Wireshark development thrives thanks to the contributions of networking […]
IPAudit – Network Activity Monitor with Web Interface
[ad] IPAudit monitors network activity on a network by host, protocol and port. It listens to a network device in promiscuous mode, and records every connection between two ip addresses. A unique connection is determined by the ip addresses of the two machines, the protocol used between them, and the port numbers (if they are […]