View previous topic :: View next topic |
Author |
Message |
visa Just Arrived
Joined: 10 May 2003 Posts: 0
|
Posted: Sat May 10, 2003 9:02 am Post subject: Who can recommend a program to capture network data |
|
|
I'm developing php programs, and I need to know exactly what sent and received. Any advice?
|
|
Back to top |
|
|
tutaepaki Trusted SF Member
Joined: 02 May 2002 Posts: 3 Location: New Zealand
|
Posted: Sat May 10, 2003 9:08 am Post subject: |
|
|
Ethereal!
|
|
Back to top |
|
|
visa Just Arrived
Joined: 10 May 2003 Posts: 0
|
Posted: Sat May 10, 2003 9:18 am Post subject: |
|
|
Ethereal does work fine. But my program is a very complicated program, and it generates many connections and hundreds of packets in just one click. Ethereal bring everything together, and it's very hard to locate what I need. A tool with url view may help a lot.
Any others?
|
|
Back to top |
|
|
TaloneR Just Arrived
Joined: 16 Apr 2003 Posts: 2
|
Posted: Sat May 10, 2003 9:38 am Post subject: |
|
|
well... i don't know how complex it your program... but you can try Sniffer Pro by NAI. I found it preety good but slightly on the higher side of pricing.
see if you can find any demo around.
|
|
Back to top |
|
|
alt.don SF Boss
Joined: 04 Mar 2003 Posts: 16777079
|
Posted: Sat May 10, 2003 1:50 pm Post subject: |
|
|
Well I would still suggest a simple tool like ethereal or windump. Once you have the file collected just use ngrep to look for what it is your looking
for. See the following url for ngrep and it's uses.
http://www.packetfactory.net/Projects/ngrep/
You do not need some expensive tool to do what your asking just a knowledge of existing one's that are free. I quite often parse through very
large files with a combination of ngrep and or bit masking. It works very well.
|
|
Back to top |
|
|
ali136493 Just Arrived
Joined: 16 Jun 2003 Posts: 0
|
Posted: Tue Jun 17, 2003 4:27 pm Post subject: Iris |
|
|
Iris is one of the best sniffers!
I don't know the adress search in google you will find out!
|
|
Back to top |
|
|
chris Forum Fanatic
Joined: 18 Apr 2002 Posts: 16777201 Location: ~/security-forums
|
Posted: Tue Jun 17, 2003 4:31 pm Post subject: Re: Iris |
|
|
ali136493 wrote: |
Iris is one of the best sniffers!
I don't know the adress search in google you will find out! |
But isnt free unlike ethereal ?
Quote: |
Iris - Version 4
$995.00
|
From http://www.eeye.com/html/Products/Iris/Purchase.html
|
|
Back to top |
|
|
b4rtm4n Trusted SF Member
Joined: 26 May 2002 Posts: 16777206 Location: Bi Mon Sci Fi Con
|
Posted: Tue Jun 17, 2003 5:20 pm Post subject: |
|
|
I've used sniffer pro in the past an IMHO it the *BEST* software sniffer/analyzer available.
Costs lots of ching tho
If you can persuade someone to pay for it for you tho ....
|
|
Back to top |
|
|
TaloneR Just Arrived
Joined: 16 Apr 2003 Posts: 2
|
Posted: Tue Jun 17, 2003 5:31 pm Post subject: |
|
|
b4rtm4n wrote: |
I've used sniffer pro in the past an IMHO it the *BEST* software sniffer/analyzer available.
Costs lots of ching tho
If you can persuade someone to pay for it for you tho .... |
well i found a demo... from an archive.. and it works too ... but I found it after a search for 2 hrs.
|
|
Back to top |
|
|
b4rtm4n Trusted SF Member
Joined: 26 May 2002 Posts: 16777206 Location: Bi Mon Sci Fi Con
|
Posted: Tue Jun 17, 2003 5:35 pm Post subject: |
|
|
2 hrs is a small price to pay
|
|
Back to top |
|
|
Aflack Just Arrived
Joined: 13 Jun 2003 Posts: 0 Location: This Is Xtreme
|
Posted: Tue Jun 17, 2003 11:35 pm Post subject: |
|
|
I just want to make sure if this is correct. I know that etheral sniffs packets on your network and on the internet. So if I have etheral running on a network and I am login before another user and I loaded etheral before he login. Would I receieve his password file into my sniffer?
|
|
Back to top |
|
|
hellsolaris Just Arrived
Joined: 17 Jul 2003 Posts: 0
|
Posted: Fri Jul 18, 2003 2:25 am Post subject: |
|
|
Aflack wrote: |
I just want to make sure if this is correct. I know that etheral sniffs packets on your network and on the internet. So if I have etheral running on a network and I am login before another user and I loaded etheral before he login. Would I receieve his password file into my sniffer? |
if the sniffer is run on gateway or router ,you can receive other's password, if it is run on your OS, you can't
|
|
Back to top |
|
|
PhiBer SF Mod
Joined: 11 Mar 2003 Posts: 20 Location: Your MBR
|
Posted: Fri Jul 18, 2003 2:33 am Post subject: |
|
|
How would you go about putting it on a router? Would you just run it on a local machine and use the routers IP address?
|
|
Back to top |
|
|
bsdjunkie Trusted SF Member
Joined: 13 Jun 2003 Posts: 2
|
Posted: Fri Jul 18, 2003 2:33 am Post subject: |
|
|
Quote: |
if the sniffer is run on gateway or router ,you can receive other's password, if it is run on your OS, you can't |
Would you care to place a bet on that???
|
|
Back to top |
|
|
PhiBer SF Mod
Joined: 11 Mar 2003 Posts: 20 Location: Your MBR
|
Posted: Fri Jul 18, 2003 2:36 am Post subject: |
|
|
Ah HA!
Quote: |
Would you care to place a bet on that??? |
Seemed to answer my question about running a packet analyzer from a local machine to analyze packets coming through the router.
|
|
Back to top |
|
|
RoboGeek SF Mod
Joined: 13 Jun 2003 Posts: 16777166 Location: LeRoy, IL
|
Posted: Fri Jul 18, 2003 2:40 am Post subject: |
|
|
bsdjunkie wrote: |
Quote: |
if the sniffer is run on gateway or router ,you can receive other's password, if it is run on your OS, you can't |
Would you care to place a bet on that??? |
Not me!
|
|
Back to top |
|
|
|