Members
  • Total Members: 14176
  • Latest: toxxxa
Stats
  • Total Posts: 42862
  • Total Topics: 16071
  • Online Today: 1333
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)









Author Topic: protocol analyzer ?  (Read 4532 times)

0 Members and 1 Guest are viewing this topic.

mikey

  • SCF VIP Member
  • *****
  • Posts: 42
  • KARMA: 15
  • Gender: Male
  • Predator
protocol analyzer ?
« on: 15. April 2012., 05:51:08 »
Anyone know of a freeware sniffer with 802.1.1 features and capable of simultaneous capture across multiple adapters? I have Capsa and other commercial wares for my own use. However, I've been helping a friend layout his SOHO and home LAN. His budget doesn't provide for high $ wares.

TIA

Samker's Computer Forum - SCforum.info

protocol analyzer ?
« on: 15. April 2012., 05:51:08 »

Samker

  • SCF Administrator
  • *****
  • Posts: 7528
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: Capsa vs. Wireshark vs. Ethereal
« Reply #1 on: 15. April 2012., 08:18:24 »
Anyone know of a freeware sniffer with 802.1.1 features and capable of simultaneous capture across multiple adapters? I have Capsa and other commercial wares for my own use. However, I've been helping a friend layout his SOHO and home LAN. His budget doesn't provide for high $ wares.

TIA

I don't have to much experience with this so I'll suggest to check "Wireshark" features: http://www.wireshark.org/about.html

Another alternative is "Ethereal": http://www.ethereal.com/


I hope this info will help you??


mikey

  • SCF VIP Member
  • *****
  • Posts: 42
  • KARMA: 15
  • Gender: Male
  • Predator
Re: protocol analyzer ?
« Reply #2 on: 15. April 2012., 23:09:01 »
Hey guy, thx for the suggestion.

Well, Wireshark/Ethreal has always been the choice tool to ensure that the entire stack is monitored. BTW I have many other tools that also use the WinPCap stack. However, it doesn't allow for multiple adapters/networks in simultaneous use within a single node.

I have not used Wireshark in a long time. When I think of an analyzer today, I think of more and friendly network diagnostics. An example would be the tool I mentioned earlier...Capsa; http://www.colasoft.com/capsa/features.php And, of course for forensics, we now have so many more 'specialized' tools to monitor services and investigate incidents with.

I don't think any of the freewares fit the bill here. Oh well, I'll figure out something. I've been known to get pretty creative when networking. :)

Samker

  • SCF Administrator
  • *****
  • Posts: 7528
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: protocol analyzer ?
« Reply #3 on: 16. April 2012., 05:45:54 »

IMO, Capsa is best option but it also have "high" price:

Capsa Enterprise - USD 999.00

Capsa Professional - USD 699.00

Capsa WiFi - USD 699.00


Quote
...

I've been known to get pretty creative when networking.

...

Good luck!  :)



P.S.

Now, I have this picture in my mind:




Little joke... ;)


vishwanath99

  • SCF Member
  • **
  • Posts: 61
  • KARMA: 6
  • Gender: Male
Re: protocol analyzer ?
« Reply #4 on: 16. April 2012., 08:17:34 »
better to use backtrack 5 (ubuntu).. U wl get    
protocol analyzer and penetration test softs

Samker's Computer Forum - SCforum.info

Re: protocol analyzer ?
« Reply #4 on: 16. April 2012., 08:17:34 »

Pez

  • SCF VIP Member
  • *****
  • Posts: 776
  • KARMA: 117
  • Gender: Male
  • Pez
Re: protocol analyzer ?
« Reply #5 on: 16. April 2012., 09:52:57 »
Perhaps some of Sysinternels tools can be use full. Thay are all freeware.

"Sysinternals Networking Utilities" http://technet.microsoft.com/en-us/sysinternals/bb795532

"Sysinternals Utilities Index" http://technet.microsoft.com/en-us/sysinternals/bb545027

Their is two easy way to configure a system!
Every thing open and every thing closed.
Every thing else is more or less complex.

Start Turfing ! http://scforum.info/index.php/topic,8405.msg21475.html#msg21475

Samker's Computer Forum - SCforum.info

Re: protocol analyzer ?
« Reply #5 on: 16. April 2012., 09:52:57 »

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising