xiafei9900 2007-3-11 13:06
比 sniffer 好用的工具 Iris
Iris™
The Network Traffic Analyzer
Iris is a revolutionary network management tool ingeniously designed to help IT personnel proactively monitor their organizations network.
Iris is a study in simplicity. A next-generation network protocol analyzer, Iris allows the network administrator to capture and retrace the steps of any network user with never before seen ease. By monitoring both incoming and outgoing network traffic, Iris functions as a complete systems management watchdog.
If an attacker plots an intrusion against an organizations network, in most situations the firewall will inform the network administrator. However, the evidence of such an attack is incomplete and difficult to decipher. Iris will capture the evidence of network intrusions, literally reconstructing every keystroke and movement. Dissecting that critical information with Iris is simple and efficient, saving IT personnel valuable time.
Iris will reconstruct Web-browsing sessions on an organizations local network, even simulating cookies for entry into password protected websites that have been entered. Iris not only informs the network administrator who else is connected to their organizations system, but what they are doing there. Iris will inform the network administrator what an attacker is attempting to do when the firewall starts screaming that someone is initiating an intrusion on their system.
With the simple push of a button, the administrator can “sniff” detailed information concerning the activities of its network users. Using Iris, the network administrator can set-up automated screens to monitor the Web-browsing patterns of their organizations personnel to determine if company security or intellectual property is being compromised. The confidence Iris instills in an organizations network security will ultimately lead to decreased network down time and increased IT focus.
Unlike other network analyzers, Iris has advanced, integrated technology that allows it to reconstruct network traffic in a format that is simple to use and understand. While most other network analyzers merely display a list of packets traveling across a network, Iris will reconstruct each of those packets individually. Thus, capturing a clear and concise image of the integrity of an organizations entire network.
Iris Features
Iris can promiscuously capture all packets from the current network segment.
Iris is also able to decode the packets you are seeing, showing you all the details about the captured packets.
Iris is the only network monitor able to load ALL types of trace files containing IP packets.
Iris has the most intuitive packet editor. You just write a value inside a packet and you’ll instantly see what you have done in protocol decoder window. Packet checksums are instantly computed.
Iris reconstructs the TCP sessions and shows the eMails, web pages, ftp sessions and everything that goes unencrypted in your network.
Iris lets you search for certain words through captured sessions (web pages, emails, instant messages, etc) .
Iris can log everything: the packets, the reconstructed sessions and also the connection attempts. Report logs can be set to be in a form that allows an easy import into spreadsheet programs.
Iris has one of the most intuitive packet filters system allowing you to look only at the desired packets.
With Iris you can Log Network Wide Foreign Connection Attempts. Iris can watch over your office and alarm you when someone from the outside tries to connect to your computers.
Iris allows you to send packets to your network. You can capture packets, modify them, re-arrange them and send them back to the network.
Iris can be left unattended for days watching your computers using predefined schedules. All the captured data can be written in log files.
Iris can extract images from sniffed web pages.
Iris can generate comprehensive traffic reports.
捕包
[img]../images/fileType/gif.gif[/img]此主题相关图片
[url=../images/upload/2004/07/02/124358.gif][img]../images/upload/2004/07/02/124358s.jpg[/img][/url]
解码数据
[img]../images/fileType/gif.gif[/img]此主题相关图片
[url=../images/upload/2004/07/02/124524.gif][img]../images/upload/2004/07/02/124524s.jpg[/img][/url]