Simple software probe which is used to capture data from a network and forward over a streaming protocol. Can be integrated with snort so that the captured data corresponds with an attackers IP address as detected by snort.
Developed under Microsoft Visual Studio 2010/12/13 and .Net Framework 4.0/4.5 for Windows XP and later, but also successfully demonstrated under Mono for Linux.
The application can fully process a wide selection of PCAP NG, PCAP and NA Sniffer packet captures and can fully unpack a range of frames
... [More], packets and datagrams therein, but the unpacked data is not utilised in the configured version of the code.
Without additional knowledge of the structure of the messages, the application cannot handle multiple messages within a TCP packet.
The code can perform latency analysis for packet round trips across a network and analysis for time messages on a network
Histograms and CSV files can be output for the latency and time analysis results [Less]