Solved

Sniffer .enc file format

Posted on 2004-08-04
4
1,617 Views
Last Modified: 2008-02-01
Hi all,

I've been given the task of writing a sniffer-like tool that, among other things, saves files in the .enc etherpeek compatible file format.  Firstly though, I need to determine whether the customised information I'll be grabbing off the network has everything I require to actually produce a proper .enc file before I go and code it.  I found this link: http://www.networkuptime.com/tips/file_formats/ which says "original Ethernet trace file format is detailed in the Sniffer documentation" but the link to that file is dead.  Does anyone know where I can find this info or at least give a quick breakdown of the file structure?  My Google searches so far have been less than fruitful :-(

Thanks,
daecks
0
Comment
Question by:daecks
  • 3
4 Comments
 
LVL 1

Expert Comment

by:tropsmr2
ID: 11719928
Possibly you might take a look at the Ethereal source code.  It is a free sniffer that can write outputs in many formats, including .enc.

http://www.ethereal.com/development.html

PS:  Why write the program when you could employ Ethereal for nothing?
0
 
LVL 1

Accepted Solution

by:
tropsmr2 earned 125 total points
ID: 11720019
0
 

Author Comment

by:daecks
ID: 11728308
Thanks for your help tropsmr2

Also, found a working link to the document in the source code: http://www.nai.com/common/media/sniffer/support/sdos/operation.pdf

cheers,
daecks
0
 
LVL 1

Expert Comment

by:tropsmr2
ID: 11729147
Glad to hear that you're on your way!  Cheers and best of luck with your project...troy
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Network bottleneck identifier 13 54
VTP servers with 3650 switches 5 27
Internet options/Settings 1 48
tamper proof asset tags - benefits 4 28
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question