| What is new in Sniff'em™ Version 1.12 | |
| Filter Engine | |
 |
|
|
|
|
 |
New Software Filter
Option New to version 1.1 is also the Behavior filter option. You may choose between Normal filter and Tag filter. Now what are these options about ? Well the normal filter acts as we all now it, depending on the configuration it will only show packets which passed or failed the Filter. The Tag filter however will let pass every packet but will Tag it with the Filtername it hit. A special pane within the Packetlist shows what packet has been hit by which Filter. |
|
|
|
 |
Action Tabs Thanks to an Sniff'em™ User suggestion we introduced Action Tabs into the filters, if the Filter has been hit by a packet Sniff'em™ will automaticaly execute an preset application with dynamic assigned Parameters (IPsource, MACsource..). Exemple: "trace.exe %Ipsource >>%Ipsource.txt", in this exemple evertime a packet hits the filter the executed application will trace the Source Ip and save the content of the Trace into a dynamical named txt file. This is ideal for Intrusion Detection Filters, also note that you might execute a batch (BAT) file which can launch an unlimited number of programs with the apropriate parameters ! |
|
|
|
| New Tools | |
|
Address Book Automatical Entries : If enabled Sniff'em™ will automaticaly populate the address book with decoded Hostnames from within the DNS answer packets. Manual Entries : You can manualy give names (FLOOR 1 Workstation) to IP addresses or Mac addresses along with a short description. Sniff'em™ wil then display the Names in the Packetlist instead of the IP or MAC address. |
|
|
|
|
Hardware Filter Explained We added an explanation to all the Hardware filters, bringing sense back to them for the uninitiated. |
|
|
|
|
Schedules Schedule when Sniff'em should actively start and stop to sniff the Network. All Settings will be taken into account (logging only mode, log files etc) |
|
|
|
