-
February 21st, 2003, 07:06 PM
#1
Outcoming packet sniffer on win2k
Hi,
I'm looking for a packet sniffer on win2k who can perform incoming and Outcoming sniffing but I don't find anything. All I can find are sniffer that does only incoming sniff.
Does anyone know a software who does outcoming sniff ?
-
February 21st, 2003, 07:12 PM
#2
Member
-
February 21st, 2003, 07:14 PM
#3
Try This one I think it will do what you want.
Cheers:
-
February 21st, 2003, 10:34 PM
#4
Sevari gave you a link to about the best packet sniffer available for Windows. Ethereal should provide both incoming and outgoing packet information to you...
-
February 21st, 2003, 10:49 PM
#5
Thank you, I'm going to try them.
-
February 21st, 2003, 11:06 PM
#6
You can also try WinDump, it's the Windows version of the well known TCPdump. Ethereal is easier to use with it's GUI but it tends to crash my box, that's why I prefer WinDump.
KC
Life is boring. Play NetHack... --more--
-
February 21st, 2003, 11:17 PM
#7
to the best of my knowledge etherreal and windump rule but they both require winpcap which is really no bother but if DjM's link is as good as it looks it sure would simplify matters and save space on the HD.
thanks DjM ill try it tonight on one of my home boxen.
Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”
-
February 22nd, 2003, 02:12 AM
#8
If you don't want to bother with libpcap see the below noted url. This is an advanced tool in comparison with ethereal which is gui driven and geared to the novice.http://www.nextgenss.com/software/ngssniff.html
-
February 22nd, 2003, 02:30 AM
#9
ok im running it now. it really is pretty cool. it dosnt give near the info that eathereal gives but you don't always need all that. i like the resolve source/destination feature allot. And for now im enjoying the "alarm". when packets are captured with filters in place this could really help discover what your looking for.
thanks DjM its a keeper
Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”
-
February 22nd, 2003, 05:07 AM
#10
actually i found a little tool... ngsniff ... from http://www.ngsec.com/ngresearch/ngtools/ no drivers, 1 file.. I use it at work alot and have had a need for it at home as well...
ngsniff --interface 0
and it dumps to std out... so
ngsniff --interface 0 > dmp.txt
and you get a log.. full packet information.. header and data...
i like it atleast.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|