RE: Packet capture, analysis, regeneration

Hi Mark,

If it is application profiling you are after, then we use Sniffer Pro which
is also good for generating the resultant reports
http://www.snifferpro.co.uk/

Dave

-----Original Message-----
From: Mark A. Wireman [mailto:mwireman@xxxxxxxxxxxxxxxx]
Sent: 18 April 2006 12:30
To: pen-test@xxxxxxxxxxxxxxxxx
Subject: Packet capture, analysis, regeneration

Has anyone heard of any tools or products that can capture packets, analyze
them, provide a report on the analysis, and then reassemble to show the
content?

What I have been tasked to do is capture the packets that are generated by a
custom application, analyze them in terms of size, utilization, and port,
display a report with the values, and then reassemble them to see if I can
view the content of the entire stream.

Thanks,
Mark



----------------------------------------------------------------------------
--
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to
rise, you need to proactively protect your applications from hackers. Cenzic
has the most comprehensive solutions to meet your application security
penetration testing and vulnerability management needs. You have an option
to go with a managed service (Cenzic ClickToSecure) or an enterprise
software (Cenzic Hailstorm). Download FREE whitepaper on how a managed
service can help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@xxxxxxxxxx for details.
----------------------------------------------------------------------------
--

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Relevant Pages

  • Re: Update: UDP 770 Potential Worm
    ... > were no packets indicating some form of replication. ... > my capture was limited due to the switched ... to see if the problem occurs on the test network, ... The proxy had already been isolated from the ...
    (Incidents)
  • Re: Migrating from Word mail merge to Access Reports
    ... The CanGrow works fine but it still prints all clients' ... A report is limited to 200 inches in height ... controls in the group header and footer and some in the details section. ... many packets are needed, ...
    (microsoft.public.access.reports)
  • Re: Auditing / Logging
    ... to explicitly set these values and capture the text output seperately. ... The key is that dumping anything to console or making tcpdump generate ... wants in order to capture full packets, save them to disk, and go ...
    (Pen-Test)
  • [TOOL] RPCAP, Remote Packet Capture System
    ... RPCAP is a Remote Packet Capture system. ... and uplink the captured packets to another ... the server which captures network traffic on a remote system, ... and a client, which receives and processes these packets. ...
    (Securiteam)
  • Staged Capture of Bin Laden Coming Soon
    ... Staged Capture of Bin Laden Coming Soon ... movements into northern Pakistan betray the fact that such an operation ... A British couple called Alan and Cindy Thompson ... that witnessed all this try to report it, ...
    (soc.culture.singapore)