Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth
... [More] port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rule based language to describe traffic that it should collect or pass, and a modular detection engine. Snort has a real-time alerting capability, with alert mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba's smbclient. [Less]
OpenSimMPLS is an MPLS network simulator, multiplatform and mutilanguage. It is easy-to-use and is intended for teaching activities. It can be used as well to test new protocols, techniques and methods related to MPLS and/or GoS. OpenSimMPLS is a mature project used in universities and companies in
... [More] more tan 130 different countries to teach, research and design MPLS networks.
Be careful with the license. It is not multi-license. It has been released under different licenses depending on the version. It is supposed to be Apache LIcense 2.0 from version 1.2. Before this version GNU GPL family is used. [Less]
Unicornscan is an attempt at a user-land distributed TCP/IP stack. It is intended to provide a researcher a superior interface for introducing a stimulus into and measuring a response from a TCP/IP enabled device or network. Although it currently has hundreds of individual features, a main set of
... [More] abilities include: Asynchronous stateless TCP scanning with all variations of TCP flags, asynchronous stateless TCP banner grabbing, asynchronous protocol specific UDP scanning (sending enough of a signature to elicit a response), active and passive remote OS, application and component identification by analyzing responses, PCAP file logging and filtering, relational database output, custom module support, customized data-set views. It was developed by the late Jack C. Louis. [Less]
Anet is a networking library for the Ada programming language. The library provides a BSD socket implementation and support for IPv4/UDP packet creation and validation. It can be used to implement custom protocols on top of IPv4. The library also provides a binding to the Linux Packet Filter (LPF) system.
Developed under Microsoft Visual Studio 2010/12/13 and .Net Framework 4.0/4.5 for Windows XP and later, but also successfully demonstrated under Mono for Linux.
The application can fully process a wide selection of PCAP NG, PCAP and NA Sniffer packet captures and can fully unpack a range of frames
... [More], packets and datagrams therein, but the unpacked data is not utilised in the configured version of the code.
Without additional knowledge of the structure of the messages, the application cannot handle multiple messages within a TCP packet.
The code can perform latency analysis for packet round trips across a network and analysis for time messages on a network
Histograms and CSV files can be output for the latency and time analysis results [Less]
TNV visualizes pcap data to graphically depict network packets, links, and ports for network traffic analysis to facilitate learning what constitutes 'normal' behavior, investigating security events, or network troubleshooting.
GroinK is an advanced sniffer that supports protocol deconding and MiTM attacks. Unlike other sniffers, Groink uses lua as scripting language that allows you to extend it easily.
This site uses cookies to give you the best possible experience.
By using the site, you consent to our use of cookies.
For more information, please see our
Privacy Policy