 |
|
|
|
|
 |
What
is a Packetsniffer ?
A
Packetsniffer is a program that captures, monitors and
analyzes network traffic, detecting bottlenecks and
other problems. Using this information, a network manager
can keep traffic flowing efficiently. A "sniffer" can
also be used legitimately or illegitimately to capture
data being transmitted over a network.
[
TOC ] [ Feature
List ] [ Download
] [ Tour ] [ Help
]
[ Clients ] [ Testimonials
New
] [ Purchase ] [ F.A.Q
]
|
|
|
|
Brief
details about Sniff'em™
Ü
What adapters are supported ?
Sniff'em™ supports every
Network adapter that can be put into promiscuous
(listening) mode; as promiscuous mode
is is an standard requirement for Network adapters
Sniff'em™ does support nearly all devices,
this includes USB devices. However currently Sniff'em™
does not support NDIS v5.0 drivers, this means that
some Windows 2000 ADSL drivers can't be used to
capture traffic using Sniff'em™.
Ü
What Windows versions are supported ?
Sniff'em supports : Windows 95(abc),Windows 98(se),Windows
ME, Windows NT und Windows 2000. Windows XP is currently
not supported, we are working on XP compability
at this very moment, and a Sniff'em XP version will
be ready for February 2002.
Ü
What Protocols and Ethernet codes is Sniff'em™
able to detect ?
Sniff'em™ detects a wide range of low-level
protocols as well as high-level protocols such
as IP
protocols. Realtime Ethernet fingerprinting
(currently over 4700 vendor codes) is also supported
an actively used by Sniff'em™. All these protocols
can be easily added or changed by using a graphical
interface inside the settings dialog. Besides decoding
an entire range of protocols, Sniff'em™ does
currently advanced
decoding of Netbios and DNS packets, however
more and more protocols will be added in the near
future.
Ü Why
should I/we choose Sniff'em™ over other Network
Sniffers ?
Sniff'em™ has been designed to redefine the
way data analysis and data displayal is being done
today. This however has been done keeping the price
as competitive as possible, some Network analyzers
with the same functionality as Sniff'em™ are
priced from 900$ up to 3000$
some even higher. It is your choice, you are free
to test Sniff'em™
and it's current capabilities, then decide if these
other Networksniffer are still worth their money.
Read what other persons
think about Sniff'em™.
Ü
We
are flexible
We are not a multi-million dollar company,
we are very flexible and will listen to your needs
and suggestions, if you would
like to see a special feature or a special protocol
added to Sniff'em™, simply
let us know |
|
|
|
|
What
use has a "Packetsniffer" ?
There
are several uses whether you are a Programmer, Network
Administrator, or normal User. Reasons to use a "Packetsniffer"
are numerous, Sniff'em™ is such a versatile Program
it can be used for (among others) : debugging, fault
analysis, network protocol analysis, data stream filtering,
network intrusion detection, monitoring, traffic measuring,
forensic log creation and many many more.
Programmer
Ü
Check the packets your program is trying to send
How often did you come across problems related
to wrong syntaxing of http requests or pop3, ftp
commands ? With Sniff'em™
you can spot these types of errors immediately,
eventually you will even notice that the TCP packet
you forged (using c++ as example) isn't even send
out because you computed the wrong CRC value. |
Administrator
Ü
Log Traffic
The logging capability of Sniff'em™
is of great flexibility, Sniff'em™
will dynamically create a directory tree structured
and sorted by Date, Month,Year, Time and dump the
appropriate log files in the assigned Directory.
These Logfiles can be encrypted,compressed, fingerprinted
and can taken as Tamper resistant proof whenever
needed.
Ü
Setup Sniff'em™
as an N.I.D.S unit
The filtering system of Sniff'em™
is also of a high degree of flexibility, you can
virtually filter every aspect of packets. This enables
you to only log hack/crack attempts or suspicious
Traffic. Additionally Sniff'em™
has an special mode entitled "Trigger mode",
this mode will log traffic when a specific previously
defined packet hits the network.
Example : USER Joe logs into the network using plain
text Telnet, the Filter being set to trigger on
an Packet to port 23 containing JOE, Sniff'em™
will log every packet which is being send and received
from that point on.
Ü
Spot Network configuration errors
Sniff'em™ will also enable you
(obviously) to spot Network configuration errors
by analyzing the data stream. |
Private
Ü
Monitoring of Internet usage.
Need to watch what your child/mate/partner is doing
on the Internet ? Setup Sniff'em™
on the main Network segment and start automatic
logging. You will be able to see exactly where,what
and when they happened. You can view mail send,
webpages visited, grab the Clear-text passwords
and much much more. Tools like Evidence Eliminator™
are simply useless against this type of monitoring.
( NOTICE : In some countries monitoring without
prior agreement/notice is illegal)
Ü
Detection of Privacy violations by "Adware"
or "Spyware".
Are you suspicious about your Privacy
? Want to control WHAT and WHEN is send out from
your computer ? Then Sniff'em™ is the tool
you'll need. Sniff'em™ enables you to immediately
watch and inspect the packets as they travel through
your Network. Spyware, Adware can be spotted quite
easily with Sniff'em™
Ü Learn
A side-effect of using Sniff'em™
is that you will learn and comprehend how the Internet
is build up and how Protocols do work. You can spot
and dissect DNS requests, understand the ping (ICMP)
protocol etc., the more you'll work with Sniff'em
the more insight to networking you'll get. |
|
|
|
|
Is
"packet sniffer" trademarked?
Quoting : Sniffing-faq
The
word "sniffer" is a registered trademark by Network
Associates referring to the "Sniffer(r) Network Analyzer". However, the term "sniff" is used in many
other products and the term "sniffer" is more popular
in everyday usage than alternatives like "protocol analyzer"
or "network analyzer".
|
|
|
|
|
