looking for good sniffer

#1 07-25-2010, 07:01

i'm looking for a sniffer - sth like IEAnalyzer, but I need to get all incoming and outgoing packets on any ports...
IEAnalyzer works perfectly, but shows only HTTP traffic...
i know about etheral and wireshark, but it listens on a specified network adapter and i cannot set up listing requested program only...

hope, you know what i am writing about

Av0id · #2 07-25-2010, 16:35

maybe commview?

N0P · #3 07-25-2010, 23:25

OmniPeek ?

#4 07-26-2010, 04:34

maybe i'm wrong, but as i remember - commview it works very similar to other network sniffers (etheral, whireshark...)

OmniPeek... Hmm... let's see it

beBoss · #5 07-27-2010, 01:31

Ok OmniPeek, but somewhere cracked version ?

#6 07-28-2010, 00:00

http://www.komodia.com/index.php?page=sniffer.htm

#7 07-28-2010, 06:43

why not use 'wireshark'?

#8 07-30-2010, 06:51

Quote:

Originally Posted by minux

why not use 'wireshark'?

i want to view traffic made by one program only, not listen network interface... there is a lot of logs from any program... i though that there is some sniffer that works similarly to httpanalyzer - select running process and listen... but httpanalyzer shows only http traffic, so it's redundant for me...

i know that wireshark is a great sniffer, but i'm looking for sth diffrent
maybe i'm wrong, but i didn't find this option in wireshark or etheral, even in omnipeek...

when i was using one of above sniffers, i had to analyze all the packets and separate them... i wasn't sure which packets was generated by application that i want to listen...

dedificator · #9 07-30-2010, 22:39

You can do packet custom filtering by process right AFTER completed capture.

#10 05-06-2011, 13:08

commview may fit with you.
Advantages:
1.It can capture specific process,like qq and thunder.
2.auto save packets, save as pcap format, which can be read by wiershark and other opensoure tools based on libpcap lib.
Disadvantages:
1.commercial software
2.the cracked version i tried was unreliable,it will exit when come across with heavy traffic.

Wireshark can capture special port and ip ,but process like qq may have lots of ports,it can't capture all traffic.may be someone can solve this by customed filter :-)

NetworkMonitor which produced by windows, it's output format is private, you cannot anaylase it later. Am i wrong?

P.S Wireshark and Commview can capture packets from MAC/IP/TCP_UDP/APP packets.
If no sniffer can fit you requirment, you can write a program based on winpcap or libpcap to do it.

I hope it helps you

beachsun · #11 07-29-2010, 04:37

+1 to whireshark.
Great Sniffer...

arthur plank · #12 07-29-2010, 18:10

Used to use Observer Suite, which was very good and incredibly expensive.

Would not describe WireShark as great, but it's OK, is supported and is getting better.

memo-5 · #13 08-01-2010, 08:08

Hi
mafcin HHD Software produce a very nice products, try the "Accurate Network Monitor" product I think it's what you looking for.

#14 08-03-2010, 12:11

Hi,
maybe, you can use Microsoft Network Monitor.
It's free. And it can work on windows x64 .

#15 08-05-2010, 05:50

Quote:

Originally Posted by wps8848

Hi,
maybe, you can use Microsoft Network Monitor.
It's free. And it can work on windows x64 .

thanks for that - it is exactly what i needed

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Best network logger/sniffer?	FEARHQ	General Discussion	0	05-21-2002 12:58

The Following User Gave Reputation+1 to For This Useful Post: