|
Bro
|
|
Hits: 40 |
|
Date added: 09/19/2007 |
|
Bro is an open-source, Unix-based Network Intrusion Detection System (NIDS) that passively monitors network traffic and looks for suspicious activity. Bro detects intrusions by first parsing network traffic to extract is application-level semantics and then executing event-oriented analyzers that compare the activity with patterns deemed troublesome. Its analysis includes detection of specific attacks (including those defined by signatures, but also those defined in terms of events) and unusual activities (e.g., certain hosts connecting to certain services, or patterns of failed connection attempts).
Bro uses a specialized policy language that allows a site to tailor Bro's operation, both as site policies evolve and as new attacks are discovered. If Bro detects something of interest, it can be instructed to either generate a log entry, alert the operator in real-time, execute an operating system command (e.g., to terminate a connection or block a malicious host on-the-fly). In addition, Bro's detailed log files can be particularly useful for forensics.
Bro targets high-speed (Gbps), high-volume intrusion detection. By judiciously leveraging packet-filtering techniques, Bro is able to achieve the necessary performance while running on commercially available PC hardware, and thus can serve as a cost-effective means of monitoring a site's Internet connection. |
|
|
|
|
|
IP Sniffer
|
|
Hits: 36 |
|
Date added: 05/10/2006 |
|
IP Sniffer is a suite of IP Tools built around a packet sniffer. |
|
|
|
|
|
|
Port Listener XP
|
|
Hits: 32 |
|
Date added: 01/12/2005 |
|
Nice port listener by my friend moore gives u all info on all ports..Must Have |
|
|
|
|
|
|
Active Port Forwarder v0.8.3 Win32 Cygwin built
|
|
Hits: 30 |
|
Date added: 09/20/2007 |
|
Active port forwarder is a software tool for secure port forwarding. It uses SSL to increase security of communication between a server and a client. Originally, it was developed to forward data point to point. However, the need for bypassing firewalls in order to connect to internally located computers influenced the further development of the project.
AF is dedicated for people, who don't have an external ip number and want to make some services available across the net.
Moreover, zlib is used to compress the transferred data.
Using one, permanent data/control channel with flow control / packet buffering provides good performance and reasonably small latency.
Running afserver does not require root priviledges, nor does it use threads or other processes. |
|
|
|
|
|
PacketMon v1.00
|
|
Hits: 29 |
|
Date added: 01/25/2005 |
|
Are you interested in not just knowing that a particular program is using the internet, but actually viewing the communications? Do you need to log certain network activity, but have no easy means to do so? Or are you just bored and looking for a new network toy to play with? Whether you're a network administrator, network programmer or power user, AnalogX PacketMon is a fast and simple to use network monitor!
AnalogX PacketMon allows you to capture IP packets that pass through your network interface - whether they originated from the machine on which PacketMon is installed, or a completely different machine on your network! Once the packet is received, you can use the built in viewer to examine the header as well as the contents, and you can even export the results into a standard comma-delimited file to importing into your favorite program. As if that's not enough, PacketMon has a powerful rule system that allows you to narrow down the packets it captures to ensure you get EXACTLY what you're after, without tons of unrelated information. Please note, PacketMon is currently only available for Win2000/XP ONLY. |
|
|
|
