packet sniffer
Cocoa Packet Analyzer 0.66
It has come as a native Mac OS X implementation of a network protocol analyzer and packet sniffer. more>> <<less
to be a useful native Mac OS X implementation of a network protocol analyzer and packet sniffer, which supports the industry-standard PCAP packet capture format for reading, capturing and writingLicense:Freeware
Jens Francke - native Mac OS X implementation of a network protocol analyzer and packet sniffer. Cocoa Packet Analyzer. Cocoa Packet Analyzer 0.64 is a native Mac OS XLicense:Freeware
Jens Francke - native Mac OS X implementation of a network protocol analyzer and packet sniffer. Cocoa Packet Analyzer. Cocoa Packet Analyzer 0.63 is known as an easyLicense:Freeware
Jens Francke - OS X implementation of a network protocol analyzer and packet sniffer. Cocoa Packet Analyzer. Cocoa Packet Analyzer 0.62 is a full featured and advancedLicense:Freeware
Jens Francke - Network protocol analyzer and packet sniffer. Cocoa Packet Analyzer. Cocoa Packet Analyzer 0.61 comes as a network protocol
1Cocoa Packet Analyzer 0.60.1 Network protocol analyzer and packet sniffer. Cocoa Packet Analyzer 0.60.1 - Jens Francke Cocoa Packet AnalyzerCocoa Packet Analyzer uses libPCAP for reading packet files. Cocoa Packet Analyzer release ... - Search/ filter packets. - Supported Ethertypes and Protocols: Ethertype ARP, Ethertype IPLicense:Freeware
Cocoa Packet Analyzer is a native cocoa implementation of a network ... It uses libPCAP for reading packet files. Cocoa Packet Analyzer BETA release is able to: - Open
RumLog 4.2.3
RumLog comes to you as a free logging, QSL handling and printing tool, which is especially designed for the short wave DXer, made by a DXer. more>>
RumLog 4.2.3 comes to you as a free logging, QSL handling and printing tool, which is especially designed for the short wave DXer, made by a DXer. Basic logging features are included for the higher bands up to 1.2 cm. RUMlog can handle an unlimited numbers of logs and an unlimited numbers of QSOs per log. An user editable, all time country database is used for automatic DXCC recognition.
Major Features:
- RUMlog includes routines, tables and an interactive gray line map to support the user in gray line dxing.
- Using RUMlog you can print QSL card labels and manage your incoming paper QSLs. The Logbook of The World (LoTW) and eQSL are fully supported, and you can create files for the Global QSL service very quick. You can get different statistics for paper- or LoTW QSLs. It's just a mouse click to upload or download new QSLs to/from eQSL or LoTW.
- RUMlog can use the ON6DP QSL manager database to inform you about managers or addresses and it can build and use an own manager and IOTA database, extracting the information from dx-cluster spots. Provisions are made to query the qrz.com online library.
- RUMlog keeps you up to date about worked, confirmed or missing DXCCs and provides you with country lists and detailed statistics. Quick log searches or more detailed log queries are possible.
- RUMlog can establish a dx-cluster connection via the internet or via packet radio. A simple terminal is integrated for a Packet Radio connection. RUMlog will separate DX-spots and alert you via e-mail or Growl when there is a ,new one' DXCC or IOTA spotted. Multiple interactive band maps virtualize activities on the air.
- RUMlog can interface with two transceivers, setting the main parameter on your TRX from the logbook or vice versa. Kenwood, Elecraft, Yaesu and Icom transceivers are supported.
- RUMlog has import and export functions to allow exchange of log data in different formats to other logging tools.
- RUMlog can interface with Google Maps (Web-Browser based) and Google Earth. (Must be installed on your computer)
- Except the DXCC statistics, RUMlog tracks the most interesting areas of the world for the most important awards: IOTA islands, CQ zones, ITU zones, Grid Squares, US States and German DOKs.
cluster connection via the internet or via packet radio. A simple terminal is integrated for aLicense:Freeware
wake 20050624
wake 20050624 offers users a brilliant Perl program which can send Wake-on-LAN packets to wake up remote systems more>>
wake 20050624 offers users a brilliant Perl program which can send Wake-on-LAN packets to wake up remote systems. It works on any system that has Perl installed and supports UDP; any Unix-like system and even Microsoft Windows should work
How does it work?
You call wake with the MAC address of the machine you want to wake up (e.g. wake 00:40:63:DE:56:3E). This MAC address is used to construct a special packet containing the sequence 0xffffffffffff, followed by 16 repetitions of the MAC address. The machine listens to the network, and if it detects this sequence, it is powered up. Of course, this requires that the machine supports Wake-on-LAN (usually, you also have to enable it in the BIOS).
DigiTunnel 1.5.1
DigiTunnel functions as a VPN client to connect to VPN servers like Windows Server, NT Server 4.0, Watchguard, Nortel, TrendNet, and OS X Server, using PPTP (IPSec is not supported). more>>
DigiTunnel 1.5.1 functions as a VPN client to connect to VPN servers like Windows Server, NT Server 4.0, Watchguard, Nortel, TrendNet, and OS X Server, using PPTP (IPSec is not supported).
Major Features:
- On OS X 10.5 (Leopard), DigiTunnel provides compatibility with a variety of VPN Servers, the most flexible split-routing to connect directly to Internet sites while on the VPN, and allows customization of PPP options.
- On OS X 10.4 (Tiger) and earlier versions, DigiTunnel also adds advanced VPN features without needing to upgrade the OS. DigiTunnel Setup Assistant and the system-wide control/status menu make setup and use a snap. Prompt email and phone support is provided.
- DigiTunnel works over your existing Internet connection, whether it is DSL, cable modem, Airport, dial-up, etc.
- DigiTunnel supports MSCHAP and MSCHAPv2 authentication, and 40-, 56-, and 128-bit-key MPPE encryption.
Enhancements:
- Bypassed packet length check causing problems for a customer.
- Fixed DNS issues in split routing mode that were introduced in 1.5.
- Added option not to warn about mounted servers when disconnecting.
- Non-admin users can register the software.
Requirements:
- Mac OS X 10.3 or later, compatible with 10.4 (Tiger) and Intel Macintosh (Universal).
- PPTP VPN server such as Windows 2000 or NT Server with RAS configured for VPN access, or other compatible PPTP server such as TrendNet, Watchguard Firebox or Nortel. You must have a user account enabled for remote access. The server must have an address on the Internet plus an address on the private network (like a NAT address). NT Server must have a Service Pack that supports encrypted PPTP.
- An Internet (IP) connection between your OS X Mac and the server.
- *If using a NAT router to connect your Mac to the Internet, it must support PPTP pass-through. Older Airports may not (see Airport workarounds). NAT routers that support PPTP include XRouter, IPNetRouter (from Sustainable Softworks), Vicomsoft Internet Gateway and SurfDoubler (6.8+), MacSense XRouters, LinkSys routers, Netgear RT311, Airport Extreme, Snow Airport (with update) or later, and Internet Connection Sharing on Windows XP. Port-mapping alone is not enough to support an PPTP connection.
Visifire 2.2.4b
Data visualization components powered by Silverlight. more>>
Visifire 2.2.4b is a packet of open source data visualization components - powered by Microsoft Silverlight. With Visifire you can create and embed visually stunning animated Silverlight Charts within minutes. Visifire is easy to use and independent of the server side technology. It can be used with ASP, ASP.Net, PHP, JSP, ColdFusion, Ruby on Rails or just simple HTML. Data visualization components powered by Silverlight.
OpalVOIP 3.6.3
Free and open source Phone Abstraction Library more>> Free and open source Phone Abstraction Library
OpalVOIP is a C++ multi-platform, multi-protocol library for Fax, Video and Voice over IP and other networks.
Opal runs on Mac OS X, Linux, Windows, Solaris, xBSD and Windows Mobile.
NOTE: OpalVOIP is licensed and distributed under the terms of the Mozilla Public License 1.0 (MPL).
Main features:
- Low latency RTP stack designed specifically for real-time multimedia
- Full featured H.323, SIP and IAX2 protocol stacks
- Audio codecs including G.711, GSM06.10, Speex and iLBC.
- Video codecs including H.261 and H.263
- Run-time loadable codec interface for proprietary or codecs such as G.729, H.263, H.264 and MPEG4
- Completely Open Source using the commercially friendly MPL 1.1 license
System requirements:
-
-
- PTlib
Enhancements
- Fixed race condition in silence insertion algorithm where silence buffer is zero length before the first packet is received. Some downstream channels cant handle this. Now initialise silence buffer to be at a minimum 10 milliseconds.
- Fixed compile without video
- Backport of 22121 from trunk Reintroduce implicit check for NULL buffer accidentally removed in revision 22089
- Fixed empty Alert-Info field being sent in SIP INVITE.
- Fixed display name member of OpalConnection containing ONLY the display name for SIP.
- Fixed call routing issue in simpleopal
- IF we use string options to override the username (Calling-Party-Number) then we override it, no ifs buts or maybes!
- Fixed incorrect detection of remote SIP client putting local side on hold, thanks hongxing.
- Fixed incorrect trace log messages.
- Fixed fax NSE tone detect of CNG/CED being passed up to connection and application, for some reason commented out! Fixed OpenPhone detection that fax mode is already in use when get a CNG/CED indication.
- Fixed switching media format for existing channel, e.g. T.38 mode, was broken by someone.
- Slight change to routing algorithm so if the B-Party is explicitly determined, even when there is no matching "source" route in the table.
Justniffer 0.5.2
Free and open source TCP packet sniffer more>> Free and open source TCP packet sniffer
Justniffer captures TCP packets, reassembles and reorders them, performs IP packet defragmentation and displays the tcp flow in the standard output.
Justniffer is useful for logging network traffic in a standard (web server like) or in a customized way.
Justniffer can log timings, for example it can log the response time). It is very useful for tracking network services performances (e.g. application server, web server, etc.).
The main differences with other sniffers are:
- Justniffer captures tcp/ip traffic and handle all tcp/ip stuff (reordering, retrasmissions, defragmentation). The tcp flow adjustment is performed using linux kernel code included in a slightly modified version of the nids library.
- Justniffer reports timing informations. So it can be usefull for tracking network system performances
Enhancements
- fixed compilation issues with gcc 3.3.3
- added connection.timestamp
- fixed idle.time.0 formatting
- fixed documentation
- more adherence to RFC 2616: looking for headers in case insesitive mode
- new HTTP headers added
Kismet 200905 RC1
Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system more>> Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system
Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system.
Kismet will work with any wireless card which comes with support for the raw monitoring (rfmon) mode, and can sniff 802.11a, 802.11b, and 802.11g traffic.
Kismet identifies networks by passively collecting packets and detecting standard named networks, detecting (and given time, decloaking) hidden networks, and infering the presence of nonbeaconing networks via data traffic.
Main features:
- Ethereal/Tcpdump compatible data logging
- Airsnort compatible weak-iv packet logging
- Network IP range detection
- Built-in channel hopping and multicard split channel hopping
- Hidden network SSID decloaking
- Graphical mapping of networks
- Client/Server architecture allows multiple clients to view a single
- Kismet server simultaneously
- Manufacturer and model identification of access points and clients
- Detection of known default access point configurations
- Runtime decoding of WEP packets for known networks
- Named pipe output for integration with other tools, such as a layer3 IDS like Snort
- Multiplexing of multiple simultaneous capture sources on a single Kismet instance
- Distributed remote drone sniffing
- XML output
- Over 20 supported card types
Enhancements
- This is a complete rewrite of Kismet (referred to as Kismet-Newcore while under development).
- It includes a new user interface, improved tracking, IDS functions, a plugin architecture... for both server and client, and auto-detection of drivers and supported channels on sniffing devices
WireShark 1.1.3 / 1.0.8
A cross-platform network protocol analyzer more>> A cross-platform network protocol analyzer
Wireshark is one of the worlds foremost network protocol analyzers, and is the standard in many parts of the industry.
WireShark is a project developed on the base of the one that started in 1998. Hundreds of developers around the world have contributed to it, and it it still under active development.
Main features:
- Standard three-pane packet browser
- Multi-platform: Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others
- Multi-interface: Along with a standard GUI, Wireshark includes TShark, a text-mode analyzer which is useful for remote capture, analysis, and scripting
- The most powerful display filters in the industry
- VoIP analysis
- Live capture and offline analysis are supported
- Read/write many different capture file formats: tcpdump (libpcap), NAIs Sniffer(compressed and uncompressed), Sniffer Pro, NetXray, Sun snoop and atmsnoop, Shomiti/Finisar Surveyor, AIXs iptrace, Microsofts Network Monitor, Novells LANalyzer, RADCOMs WAN/LAN Analyzer, HP-UX nettl, i4btrace from the ISDN4BSD project, Cisco Secure IDS iplog, the pppd log (pppdump-format), the AG Groups/WildPackets EtherPeek/TokenPeek/AiroPeek, Visual Networks Visual UpTime and many others
- Capture files compressed with gzip can be decompressed on the fly
- Hundreds of protocols are supported, with more being added all the time
- Coloring rules can be applied to the packet list, which eases analysis
- Output can be exported to XML, PostScript, CSV, or plain text
System requirements:
- Apples X11
Enhancements
Bug Fixes:
The following vulnerabilities have been fixed:
- The PCNFSD dissector could crash. Versions affected: 0.8.20 to 1.0.7
The following bugs have been fixed:
- Lua integration could crash. (Bug 2453)
- The SCCP dissector could crash when loading more than one file in a single session. (Bug 3409)
- The NDMP dissector could crash if reassembly was enabled. (Bug 3470)
New and Updated Features:
- There are no new or updated features in this release.
New Protocol Support:
- There are no new protocols in this release.
Updated Protocol Support:
- All ASN.1 protocols, DICOM, NDMP, PCNFSD, RTCP, SCCP, SSL, STANAG 5066
New and Updated Capture File Support:
- There are no new or updated capture file formats in this release.
pane packet browser - Multi-platform: Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD ... : tcpdump (libpcap), NAIs Sniffer(compressed and uncompressed), Sniffer Pro, NetXray, Sun, Microsoft Network Monitor, NAI Sniffer (compressed and uncompressed), Sniffer Pro, andICMP Knock Server
Free and open source CLI based tool to listen for ICMP packets more>> Free and open source CLI based tool to listen for ICMP packets
ICMP Knock Server is a free tool that uses a concept similar to port knocking, which basically involves waiting for a range of packets that match given criteria before executing some action (typically exposing a port, e.g. for SSH connections, that is kept closed or blocked otherwise).
But instead of listening for TCP or UDP packets to arrive on specific ports in a specific order, it accepts ICMP echo requests and checks if their payload lengths and order of arrival match the given pattern.
The advantage is that this approach works with the standard PING tool. Programs with custom code or (although common) networking tools like netcat plus the ability to execute them are not required.
System requirements:
- Python
Switzerland 0.1
Free and open source tool for testing networks more>> Free and open source tool for testing networks
Switzerland is a tool for testing networks, ISPs and firewalls developed by the Electronic Frontier Foundation (www.eff.org).
Switzerland will spot IP packets which are forged or modified between clients, inform you, and give you copies of the modified packets.
Enhancements
Lots of bugfixes and some new features:
- Make the messages that Switzerland gives users less cryptic and more informative! Especially
- Improve on the notification of modified/forged packets in versions 0.0.x. In the case of modifications, provide specific reports of which packet fields have been modified, from what and to what. In the case of injections/forgeries, provide tcpdump-style representations of the packets.
- Include a new command line tool, study-switzerland-pcaps, to perform the above analysis based on the -in and -out pcap modification/forgery logs produced by Switzerland. This will be useful both for old logfiles from 0.0.7 and for newly created logs.
- Reduce the incidence and duration of the "you cant connect, because we already have a connection from your IP" problem.
- Fix several internal bugs in the server, which 0.0.7 "handled" by catching exceptions and trying to ignore them.
- When modified/forged packets are observed, dont tell other parties what your NIC and routers MAC addresses are
Internal improvements and adjustments:
Refactor things out of Switzerland.py:
- Matchmaking is now separated and easier to understand
- Forgery context operations are now part of SwitzerlandLink.py
- There are some minor but incompatible changes to the wire protocol, in which reports on forgeries are passed around with the fo-context and forged-details messages.
- We have some traceroute collection infrastructure now, although were not using it yet
CloudVPN 1.99.4
Small and secure SSL-based mesh networking tool more>> Small and secure SSL-based mesh networking tool
CloudVPN is a multi-protocol mesh virtual network. Simply - CloudVPN is capable of transporting any reasonable packet protocol, for any application that needs to communicate.
Cloud nodes act as a meshing and transporting layer, and applications connect to them using a gate socket.
Such client applications include:
- Ethernet tunnel, that uses the cloud as one big virtual network, which, given the mesh properties, also proves to be efficient and secure; and gives CloudVPN the "classical VPN function".
- Secure chat client, using the same security adventages.
- Filesharing client (which really proposed itself as a bittorrent alternative)
- Optimized radio-like broadcasting client
- Whatever else you like.
Enhancements
- Full Win32 support was added with the TAP-Win32 package. Massive cleanup was done. The build system was migrated to autotools, which allows easy compiling on many platforms. Some... compilation fixes and one local socket improvement were made
Smack XmlBeans 0.0.5
Free software that provides access to the Smack XMPP client library packet extensions more>>
Enhancements:
- Improved README file.
- Cleaned up build.xml.
- Version number moved from build.xml to project.properties.
- Added ant target fill_javadoc_since_tag to auto fill javadoc SINCE tag.
- Corrected copyright record. 0.0.4 Configuration files are fixed. README file is changed. XmlBeansExtensionsListenerWrapper.java is added. SVN properties are set
- Javadocs are added to the package. 0.0.3
- The project is completely reorganized. Project environment tuning.
- Interface XmlBeansExtensionsListener added.
hping2 2.0.0 RC3
Free command-line oriented TCP/IP packet assembler/analyzer more>> Free command-line oriented TCP/IP packet assembler/analyzer
hping2 is an interactive packet costructor and responses analyzer that uses the same CLI of the ping program (but with a lot of extensions).
hping2 can be used to performs a lot of tasks, like testing of firewall rules, (spoofed) port scanning, et cetera.
The interface is inspired to the ping(8) unix command, but hping isnt only able to send ICMP echo requests.
hping2 supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features.
hping2 is multi-platform and works on the following OSs: Mac OS X, Linux, FreeBSD, NetBSD, OpenBSD, Solaris, Windows.
Main features:
- Firewall testing
- Advanced port scanning
- Network testing, using different protocols, TOS, fragmentation
- Manual path MTU discovery
- Advanced traceroute, under all the supported protocols
- Remote OS fingerprinting
- Remote uptime guessing
- TCP/IP stacks auditing
- hping can also be useful to students that are learning TCP/IP.
throttled 0.5.1
throttled brings a effective bandwidth shaper for Mac OS X, FreeBSD, and linux used to help put a cap on your upstream bandwidth and keep your download speeds high even when your server is sending out at full speed. more>>
throttled 0.5.1 brings a effective bandwidth shaper for Mac OS X, FreeBSD, and linux to help put a cap on your upstream bandwidth and keep your download speeds high even when your server is sending out at full speed.
Major Features:
- Allows you to set either a global throttle for all your applications, or multiple throttles with different speeds to guarantee all your servers a certain bandwidth
- Allows you to setup priority queues for your network data to guarantee low-latency ssh, telnet, etc connections on your server.
- Includes optimizations for many online games including Unreal Tournament 2004, World of Warcraft, Call of Duty, Ghost Recon, Starcraft, Warcraft II, Warcraft III, and Diablo II.
- Prioritizes the ACK packet to allow consistant bandwidth in both directions even under heavy server load.
- Flag for allowing you to throttle local network addresses 192.168.x.x and 10.x.x.x. (By default only internet bound traffic is throttled)
- It uses almost no resources. CPU usage is around 0 - 2% and it uses less than 500k of RAM.
- Source code is freely available, and released under the GPL. Please read the COPYING file in the distribution.
Requirements: Mac OS X 10.4 or higher
Prioritizes the ACK packet to allow consistant bandwidth in both directions even under heavyyou to set an unlimited number of caps, and provides ACK packet priority for better server