Security Basics mailing list archives
Re: Sniffering and Protocol Analyzer ?
From: "Nikhil Wagholikar" <visitnikhil () gmail com>
Date: Tue, 10 Jul 2007 08:40:39 +0530
Hello Mohamed Farid, I feel Colasoft Capsa from Colasoft, is one of the Best Graphical Packet Analyzer. Its suggested that, you sniff the network using Wireshark & save its output in pcap format. Now import this saved pcap result in Colasoft Capsa to get a beautiful graphical display of sniffed network packets. However, Colasoft Capsa also has built-in sniffer, but personally I prefer this method for analysis, because there is no best sniffer than Wireshark. Colasoft Capsa: http://www.colasoft.com/ Note: Colasoft Capsa is not a freeware like Wireshark. Besides this, there are couple of other Network Sniffer & Traffic analyzers too, namely "NetworkMiner" which is a freeware. NetworkMiner: http://sourceforge.net/projects/networkminer/ -- Nikhil Wagholikar Information Security Analyst NII Consulting Web: http://www.niiconsulting.com Email: nikhil () niiconsulting com On 7/8/07, Mohamed Farid <mfarid () mscc com eg> wrote:
Dear All : I have a problem : I have a MRTG on one of my Internet Switches and it shows that the traffic is almost 100% utilized ... I need to have a packet sniffering and protocol analyzer to show me the PC which is the cause of this problem ... I used Ethereal ( Woreshark ) but I couldn't get an easy output ... Can you advise what should I do ? Mohamed Farid ,, * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * This e-mail (including attachments) is classified as Mediterranean Smart Cards Company confidential and proprietary information The recipient hereby is committed to hold in strict confidence the contents of this (e-mail, document, and information) and not to disclose to any third party without the prior written consent of Mediterranean Smart Cards Company. Recipient will be held liable for any unauthorized disclosure. It is intended solely for the addressee. Unless you are the addressee, you may not read, copy, use or store this e-mail in any way, or permit others to. If you have received it in error, please notify the sender by return e-mail and delete the message in its entirety, including any attachments * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
Current thread:
- Sniffering and Protocol Analyzer ? Mohamed Farid (Jul 09)
- RE: Sniffering and Protocol Analyzer ? Skokan, Paul (Jul 09)
- Re: Sniffering and Protocol Analyzer ? Jacco (Jul 09)
- Re: Sniffering and Protocol Analyzer ? lobo (Jul 09)
- Re: Sniffering and Protocol Analyzer ? Kurt Buff (Jul 09)
- Re: Sniffering and Protocol Analyzer ? Nikhil Wagholikar (Jul 11)
- RE: Sniffering and Protocol Analyzer ? Skokan, Paul (Jul 09)