Sniffer

imsniff is a pcap-based instant messaging sniffer. It captures the IM traffic in the network and is able to log conversations, contact lists, profile information, incoming email notifications, other MSN events, etc. Tested in Linux and Windows. You can configure it via command line parameters...

chkrootkit is a tool to locally check for signs of a rootkit. It contains: - chkrootkit: shell script that checks system binaries for rootkit modification. - ifpromisc.c: checks if the interface is in promiscuous mode. - chklastlog.c: checks for lastlog deletions. - chkwtmp.c: checks for...

HttpCapture is a core wrapper around the packet-capture library pcap and a framework for building plugins to filter, analyse, or display interesting network packets. The core of the application is minimal, and a collection of plugin libraries are used to actually process the packets. The...


Platforms: *nix

tcpick is a textmode sniffer libpcap-based that can track, reassemble and reorder tcp streams. Tcpick is able to save the captured flows in different files or displays them in the terminal, and so it is useful to sniff files that are transmitted via ftp or http. It can display all the stream on...


Platforms: *nix

TV-Snooper is a dashboard widget that is a shameless makeover of TV-Sniffer by Stefan Joos (itself inspired by Annuaire) adapted to the french TV programmes.It is based on TV listings from telepoche.fr.


Platforms: Mac

Scanhill project is a Microsoft Messenger Protocol Sniffer. Currently it can only intercept Instant Text Messaging. Optionally, intercepted text messages can be stored onto an RDMBS (Only mySQL is supported for now). Given that mySQL is used, stored instant messages can be read through a...


Platforms: *nix

jNetStream is a protocol analyzer and a sniffer. A set of applications and complete Java library are provided with a comprehensive API. Hundreds of protocols have been defined, and the list can be expanded with a simple NPL language. It is appropriate for custom protocol development, grad...


Platforms: *nix

The Firewall Tester (FTester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities.The tool consists of two perl scripts, a packet injector (ftest) and the listening sniffer (ftestd). The first script injects custom packets, defined in...


Platforms: *nix

NeWBIE LiveCD is a NetBSD based distro geared towards the desktop user. It includes software for Web browsing, chatting, multimedia, and document editing. This acronym NeWBIE is pronounced just like the word "newbie" and stands for (Ne)tBSD (W)are (B)urned (I)n (E)conomy. Newbie is a NetBSD...


Platforms: *nix

Pdump project (Packet dump) is a network packet sniffer. Installation: The simplest way to compile this package is: 1. `cd to the directory containing the packages source code and type `./configure to configure the package for your system. If youre using `csh on an old version of System V,...


Platforms: *nix

pcapsipdump is libpcap-based SIP sniffer with per-call sorting capabilities. It writes SIP/RTP sessions to disk in a same format, as "tcpdump -w", but one file per SIP session (even if there is thousands of concurrent SIP sessions).


Platforms: *nix

Honeytrap project trap attacks against tcp services. Honeytrap is a network security tool written to observe attacks against TCP services. As a low-interactive honeypot, it collects information regarding known or unknown network-based attacks and thus can provide early-warning information. The...


Platforms: *nix

Impost is a network security auditing tool designed to analyze the forensics behind compromised and/or vulnerable daemons. Theres two different kinds of operating modes used by Impost; It can either act as a honey pot and take orders from a Perl script controlling how it responds and communicates...


Platforms: *nix

KSniffer is a sniffing application for KDE. KSniffer is in the starting release... Not yet released as stable, not for crashed, but for few feature. Whats New in This Release: - add/remove KSniffer in the system tray bar - added KSniffer option dialog: - sniffer settings: * display...


Platforms: *nix

passlogd is a purpose-built sniffer for capturing syslog messages in transit. This allows for backup logging to be performed on a machine with no open ports. Useful if your log server is compromised or you dont want to sift through a terabyte of sniffer logs. Passlogd is currently under...


Platforms: *nix

PowerPop is a powerful Local Area Network Messenger for Macintosh.


Platforms: Mac

This program is a daemon intended to catch someone installing a rootkit or running a packet sniffer. It is designed to run continually with a small footprint under an innocuous name. When triggered, it sends email, appends to a logfile, and disables networking or halts the system. it is designed...


Platforms: *nix

Hafiye is a POSIX-compliant, customizable TCP/IP packet sniffer. When I looked at the source code for various famous sniffers, Ive noticed that they all had all seperate .C files for interpreting various protocols. Why not have a sniffer that can understand user-supplied protocol details? Here it...


Platforms: *nix

RogueScanner project is an open-source vulnerability management tool that is used to gain greater network visibility to enable you to quickly identify and remove rogue wireless devices that may provide a back door to access your critical data and infrastructure. Considering that rogue access...


Platforms: *nix

Eavesdrop is an application for listening in on TCP conversations on the network your computer is attached to. See Notes for Newbies if you have not worked with a network sniffer before. I strongly suggest you look into other applications, such as tcpdump (available in Mac OS X 10.3 already) and...


Platforms: Mac