Mike Noyes wrote: > > At 2002-03-09 14:01 -0600, Michael D. Schleif wrote: > >Also, since I do not know everything there is to know about networks > >and quantifying everything quantifiable about same, regarding your > >sniffer questions, can you describe a simple, open source process to > >accomplish these tasks? > > Michael, > The best Security Audit OSS is Nessus, and the three best network > traffic/protocol analyzers are: Ethereal, IPTraf, and Tcpdump. > > Nessus > http://www.nessus.org/ > > Ethereal > http://www.ethereal.com/ > > IPTraf > http://cebu.mozcom.com/riker/iptraf/ > > Tcpdump > http://www.tcpdump.org/ > > Kismet is supposed to be good for 802.11b networks. > http://www.kismetwireless.net/ > > Oxygen can be used as a telemetry box with tcpdump. Ask David for the details.
Yes, the tools are useful and it is excellent that we will now find this fine list in the archives. However, having the tools is one thing and having a sound process by which to use said tools is quite another. Sometimes, the logistics involved in properly setting up an investigative environment is the single most daunting task. Since I do not have direct access to the offending workstations and I cannot predict when a potential offender will actually offend, I must either expend a great deal of my own sparsely available resources or I need rely on effective instructions to the naive user of said offending system. Again, this is a very good list of tools that is readily visible from the archives . . . -- Best Regards, mds mds resource 888.250.3987 Dare to fix things before they break . . . Our capacity for understanding is inversely proportional to how much we think we know. The more I know, the more I know I don't know . . . _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
