-
Change the frames to ab to show 3 digits before the x (i.e. 343xx instead of 34xxx)
2010-01-06 07:46:41 UTC by nobody
-
Add a column for the file extensions under the files tab. This way the extracted files can be sorted internally by extension as well as name.
2010-01-04 18:51:04 UTC by nobody
-
I Network miner seems to work ok after installing the proper dll's but when I hit the button it just records [Blank]...
It creates the file name on the right but i get no data capture. :(
it has an Atheros AR5007 chipset
any help would be grateful
Thanx.
2010-01-03 21:09:46 UTC by samuraizombie
-
hjelmvik made 2 file-release changes.
2009-12-13 18:10:02 UTC by hjelmvik
-
When going through the HTTP Header Fields also make sure to extract the "Referer" header. This value can be used to show which links a suspect has followed when surfing. The surf history could be displayed as a tree view on a separate tab in the GUI. Thanks to Steffen for this idea!
2009-12-12 17:38:46 UTC by hjelmvik
-
By extracting the time from an NTP packet the time skew can be determined between the frame timestamp in the pcap and the NTP server. This can be important to know in a forensic investigation when determining a timeline. Kudos to Steffen for the idea.
2009-12-12 17:31:56 UTC by hjelmvik
-
It seems as if Google Wave also is based on XMPP. More details here:
http://www.process-one.net/en/imtrends/article/google_wave_another_steps_toward_xmpp_powering_the_real_time_web/.
2009-12-12 17:16:53 UTC by hjelmvik
-
I use it with VMWare Workstation. I run Network Miner on the Host OS and point it at the NAT address assigned to the VMWare Guest OS (on my setup it's "VMnet8")
You can also run it within a VMWare session, but you have to install the WinPCAP library first.
2009-12-01 18:24:42 UTC by spikescape
-
Implement 'ISO on TCP'-protocol in NetworkMiner.
RFC: http://www.ietf.org/rfc/rfc1006.txt.
2009-11-27 08:59:24 UTC by schroe
-
Apart from creating a Packet and a PacketHandler your'd also have to add the protocol name to PacketParser.ApplicationLayerProtocol as well as to add some code to TcpPortProtocolFinder (assuming the protocol runs on top of TCP).
The easiest solution is of course to add a [feature request][1] for the protocol here:
http://sourceforge.net/tracker/?group_id=189429&atid=929293
I will then add...
2009-11-25 18:57:58 UTC by hjelmvik