View Full Version : Tools to check on traffic
m00nbl00d
July 3rd, 2009, 11:00 PM
I'm looking for some other (reliable) tools to monitor Internet traffic (inbound and outbound). Just to have knowledge of what other alternatives are out there.
I currently make use of TCPView, by Sysinternals.
Do you make use of any different tool, or do you stick with TCPView?
Thanks
Edit: I also forgot to ask if it would be possible, and how, to create a "simple" Windows Powershell script, that could detect applications wanting to communicate with the outside?
It may sound a silly thought of mine, though. :D
nick s
July 3rd, 2009, 11:31 PM
-{ Quote: "I'm looking for some other (reliable) tools to monitor Internet traffic (inbound and outbound). Just to have knowledge of what other alternatives are out there.
I currently make use of TCPView, by Sysinternals.
Do you make use of any different tool, or do you stick with TCPView?" }-
I use Microsoft's Network Monitor. Its output, like TCPView, is process-based and, like TCPView, it's also free. You can get it here: Network Monitor 3.3 is now available (https://connect.microsoft.com/site/sitehome.aspx?SiteID=216).
m00nbl00d
July 4th, 2009, 07:14 AM
I'll take a look. But, for what I'm reading over the product page, seems quite interesting.
Thank you
lodore
July 4th, 2009, 08:50 AM
could also look at wireshark.
TheKid7
July 4th, 2009, 01:46 PM
Here are some Payware's (I have no experience with any of them.):
http://www.snapfiles.com/Shareware/network/swnetmoni.html
Here are some Freeware's (I have no experience with any of them.):
http://www.snapfiles.com/Freeware/network/fwnetmoni.html
I only have experience (very Limited) with TCPView.
Spiral123
July 4th, 2009, 02:11 PM
If you save the cap to a file, you can also use other forensic-like tools to analyze the traffic and extrapolate interesting details. For example, networkminer is pretty cool and free. There are many others, but each one seems to have its strengths.
1boss1
July 5th, 2009, 06:40 AM
-{ Quote: "I use Microsoft's Network Monitor. Its output, like TCPView, is process-based and, like TCPView, it's also free. You can get it here: Network Monitor 3.3 is now available (https://connect.microsoft.com/site/sitehome.aspx?SiteID=216)." }-
Excellent tool thanks, just installed and it's quite good.
I'm slightly confused at all the connections to updates.agnitum.com though, in 5 minutes there's been 100's. :-\
vBulletin® Copyright ©2000-2012, Jelsoft Enterprises Ltd.
Copyright ©2002 - 2012, Wilders Security Forums