I checked out Pilot from CACE some more and it seems to be a great tool (but the pricing may put it out of my reach).
I am still interested in looking at other alternatives (both commercial and open source).
Any other good tools out there for this?
Thanks,
JB
--- On Thu, 9/25/08, Jaap Keuter <jaap.keuter@xxxxxxxxx> wrote:
From: Jaap Keuter <jaap.keuter@xxxxxxxxx>
Subject: Re: [Wireshark-users] Good tools for pcap summary info, etc.?
To: jimbalo22@xxxxxxxxx, "Community support list for Wireshark" <wireshark-users@xxxxxxxxxxxxx>
Date: Thursday, September 25, 2008, 11:48 AM
Hi,
You may want to have a look at Pilot, from CACE tech, the Wireshark supporters.
Thanx,
Jaap
[Note: I'm not in any way connected to CACE, other than working on
Wireshark]
Jim Balo wrote:
> Hello,
>
> I am capturing all traffic leaving our network in order to determine
> what traffic should be allowed and what traffic should be blocked (by
> egress filtering). Last time I did this, it was quite painful and took
> a long time.
>
> I know there are some built in tools in Wireshark for displaying
> summaries of pcap traffic, but I am interested in finding out what other
> tools are out there for anylyzing big pcap files and displaying
> summaries / statistics in various ways (like end-point communications w/
> easy access to whois and/or other details for each node).
>
> Any help on this would be great!
>
> Thanks,
> JB
>
|
