Re: Network Analysis tool

From: James Fields (jvfields_at_tds.net)
Date: 08/27/03

  • Next message: Meritt James: "Re: Hunting for Mr Badmouth" 
    To: "Alaa Shaheen" <Ashaheen@aedegypt.org>, <security-basics@securityfocus.com>
Date: Wed, 27 Aug 2003 13:48:54 -0400

    Quite a few actually. Firewall logs are a good place to start. Sniffers
    are also good. You will need elevated access to the network to use one in
    most cases.

    ----- Original Message -----
    From: "Alaa Shaheen" <Ashaheen@aedegypt.org>
    To: <security-basics@securityfocus.com>
    Sent: Wednesday, August 27, 2003 6:28 AM
    Subject: Network Analysis tool

    > Hi All
    >
    > Is there is a tool that can scan the network traffic and tell me if
    > there is any P2P, MSN, ICQ and other IM traffic in the network and who
    > is originating it ?
    >
    > Thank you
    >
    > Alaa Shaheen
    >
    >
    > --------------------------------------------------------------------------
    -
    > Attend Black Hat Briefings & Training Federal, September 29-30 (Training),
    > October 1-2 (Briefings) in Tysons Corner, VA; the world's premier
    > technical IT security event. Modeled after the famous Black Hat event in
    > Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.
    > Symantec is the Diamond sponsor. Early-bird registration ends September
    6.Visit us: www.blackhat.com
    > -------------------------------------------------------------------------- 

    --
>
>
---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), 
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier 
technical IT security event.  Modeled after the famous Black Hat event in 
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.  
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------
  • Next message: Meritt James: "Re: Hunting for Mr Badmouth"

    Relevant Pages

    • RE: Physical Computer Location
      ... Some programs, like Fluke's Network Inspector, are able of printing out ... > technical IT security event. ... > Symantec is the Diamond sponsor. ... Attend Black Hat Briefings & Training Federal, September 29-30, ...
      (Security-Basics)
    • benefits of IDS (was: Network IDS)
      ... > Here is an article that I wrote for masshightech regarding network based ... Modeled after the famous Black Hat event in ... Attend Black Hat Briefings & Training Federal, September 29-30, ... Symantec is the Diamond sponsor. ...
      (Security-Basics)
    • Re: PIX book recommendation
      ... protecting a predominately Win2k3 based LAN. ... > McAfee VirusScan Online from the Netscape Network. ... Modeled after the famous Black Hat event in ... Attend Black Hat Briefings & Training Federal, September 29-30, ...
      (Security-Basics)
    • RE: newbie to DMZ
      ... You mention 2 servers, and allude to the availability of a router. ... > the Internet the ither is for my Network. ... Modeled after the famous Black Hat event in ... Symantec is the Diamond sponsor. ...
      (Security-Basics)
    • Re: Cisco vs. Snort
      ... >Recently I've been asked to impliment an IDS system within our corporate ... whereas Cisco that is not the case. ... Most of our products on our network are ... Modeled after the famous Black Hat event in ...
      (Security-Basics)