Thursday, March 29, 2012

Netsniff-NG High Performance Sniffer 0.5.6

netsniff-ng is a free, performant Linux networking toolkit. The gain of performance is reached by zero-copy mechanisms, so that on packet reception and transmission the kernel does not need to copy packets from kernel space to user space and vice versa. For this purpose, the netsniff-ng toolkit is libpcap independent, but neverthelesssupports the pcap file format for capturing, replaying and performing offline-analysis of pcap dumps. Furthermore, we are focussing on building a robust and clean analyzer and utilities that complete netsniff-ng asa support for network development, debugging or network reconnaissance. The netsniff-ng toolkit consists of the following utilities: *. netsniff-ng , a zero-copy analyzer, pcap capturer and replayer *. trafgen , a high-performance zero-copynetwork traffic generator *. bpfc , a Berkeley Packet Filter compiler supporting Linux extensions *. ifpps , a top-like kernel networking and system statistics tool *. flowtop , a top-like netfilter connection tracking tool *. curvetun , a lightweight multiuser IPtunnel based on elliptic curve cryptography *. ashunt , an Autonomous System (AS) trace route and ISP testing utility (Note: libpcap starting from 1.0.0 now also supports zero-copy, but for capturing only! netsniff-ng's pcap files can also be opened with tools like Wireshark , and vice versa!) download Git repository: git clone git:// Git web:



Post a Comment

Twitter Delicious Facebook Digg Stumbleupon Favorites More