Justniffer
Encyclopedia
Justniffer is a TCP
packet sniffer
. It can log network traffic in a 'standard' (web server-like) or in a customized way. It can also log response times, useful for tracking network services performances (e.g. web server, application server, etc.).
The output format of the traffic can be easily customized. An example written in Python
(delivered with the official package) stores the transfered contents in an output directory separated by domains. This means that the transfered files like html, css, javascript, images, sounds, etc. can be saved to a directory.
, SMTP, IMAP, POP
, LDAP, Telnet
etc.
It can collect low and high level protocol and performance information, reconstructing the TCP flow in a reliable way using portions of the Linux
kernel code. It uses a slightly modified version of the libnids libraries that already include a modified version of Linux kernel code in a more reusable way.
It can be extended with external scripts (bash, Python
, or any executable) and generate logs in a customizable way
The man page for justniffer explains all the options.
Transmission Control Protocol
The Transmission Control Protocol is one of the core protocols of the Internet Protocol Suite. TCP is one of the two original components of the suite, complementing the Internet Protocol , and therefore the entire suite is commonly referred to as TCP/IP...
packet sniffer
Packet sniffer
A packet analyzer is a computer program or a piece of computer hardware that can intercept and log traffic passing over a digital network or part of a network...
. It can log network traffic in a 'standard' (web server-like) or in a customized way. It can also log response times, useful for tracking network services performances (e.g. web server, application server, etc.).
The output format of the traffic can be easily customized. An example written in Python
Python (programming language)
Python is a general-purpose, high-level programming language whose design philosophy emphasizes code readability. Python claims to "[combine] remarkable power with very clear syntax", and its standard library is large and comprehensive...
(delivered with the official package) stores the transfered contents in an output directory separated by domains. This means that the transfered files like html, css, javascript, images, sounds, etc. can be saved to a directory.
Overview
justniffer was born to help in toubleshooting perfomance in network TCP-based services: HTTP, RTSP, SIPSession Initiation Protocol
The Session Initiation Protocol is an IETF-defined signaling protocol widely used for controlling communication sessions such as voice and video calls over Internet Protocol . The protocol can be used for creating, modifying and terminating two-party or multiparty sessions...
, SMTP, IMAP, POP
Post Office Protocol
In computing, the Post Office Protocol is an application-layer Internet standard protocol used by local e-mail clients to retrieve e-mail from a remote server over a TCP/IP connection. POP and IMAP are the two most prevalent Internet standard protocols for e-mail retrieval. Virtually all modern...
, LDAP, Telnet
TELNET
Telnet is a network protocol used on the Internet or local area networks to provide a bidirectional interactive text-oriented communications facility using a virtual terminal connection...
etc.
It can collect low and high level protocol and performance information, reconstructing the TCP flow in a reliable way using portions of the Linux
Linux
Linux is a Unix-like computer operating system assembled under the model of free and open source software development and distribution. The defining component of any Linux system is the Linux kernel, an operating system kernel first released October 5, 1991 by Linus Torvalds...
kernel code. It uses a slightly modified version of the libnids libraries that already include a modified version of Linux kernel code in a more reusable way.
It can be extended with external scripts (bash, Python
Python (programming language)
Python is a general-purpose, high-level programming language whose design philosophy emphasizes code readability. Python claims to "[combine] remarkable power with very clear syntax", and its standard library is large and comprehensive...
, or any executable) and generate logs in a customizable way
The man page for justniffer explains all the options.