Author Topic: NetworkMiner (Read 299 times)

Axon · « **on:** January 26, 2012, 09:37:42 pm »

NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates from PCAP files.
NetworkMiner collects data (such as forensic evidence) about hosts on the network rather than to collect data regarding the traffic on the network. The main user interface view is host centric (information grouped per host) rather than packet centric (information showed as a list of packets/frames).

http://sourceforge.net/projects/networkminer/

neusbeer · « **Reply #1 on:** January 26, 2012, 09:55:28 pm »

yes.. nice nice tool..

by the way.. 1.2 newest version.. on screenshot is a old version...
also nice that they share the source..

m0rph · « **Reply #2 on:** January 26, 2012, 11:25:04 pm »

Nice find man! I've been looking for a program that reassembles packets into their original files. And it has more functionality than just that? Even though I don't use windows that much anymore, this is still a really nice tool you have found.

FuyuKitsune · « **Reply #3 on:** January 27, 2012, 03:45:41 pm »

NetworkMiner is great for looking at data as it passes. It's fun to tack on a Tor node exit. I wrote a guide on that once, it got lost when my hard drive took a dump

News:

Author Topic: NetworkMiner (Read 299 times)

Axon

NetworkMiner

neusbeer

Re: NetworkMiner

m0rph

Re: NetworkMiner

FuyuKitsune

Re: NetworkMiner