Packet logger

[Stealth]

Can anyone recommend a packet logging program?

Many thanks in advance.

[Spht]

CommView is decent and easy to use with a number of features.

[Yoni]

www.ethereal.com

[Mesiah / haiseM]

ill go with ethereal myself, it has a horrible gtk UI, but thats what u get for using something made on some crappy unix platform.

But aside its looks, it is awesome, it has like intellegence, it knew all the frame names, and layers for oscar protocol when i logged aim, and pretty much parsed it out. It is the best.

[Banana fanna fo fanna]

Crappy unix platform lol.

[Spht]

Ethereal enjoys harassing my computer by periodically forcing it to reboot randomly.

So therefore, CommView > Ethereal.

[l)ragon]

Ethereal enjoys harassing my computer by periodically forcing it to reboot randomly.

So therefore, CommView > Ethereal.

I have yet to find a packet logger that likes my network card neither of those do. ^^

[UserLoser]

WPE PRO!

[Spht]

WPE

WPE is a piece of *bleap* that logs by program instead of IP / Port / Protocol / etcetera. I believe it only has the ability log TCP messages, aswell.

[Mesiah / haiseM]

yes i use wpe pro also, cause i dunno how etheral filters work yet, so i just target the program with wpe, and read the logs :-p

i guess its alright if u know how the protocol works, but no, theres nothing special about it.

also, wpe pro does log udp protocol, but doesnt show very much on it.

[iago]

WPE is handy if you're downloading a file, or have a network passing through your computer (which is what happens to me unless I feel like getting a router (which I don't)), since it'll only log from the target program :-)

[Naem]

Ethereal stopped working once I got WinXP Pro.
(yeah, I have the newest winpcap stuff)

Therefore, WPE > Ethereal.

[Yoni]

Your conclusion is wrong.
It should say:

"Therefore, Ethereal > WinXP Pro"

[iago]

I have winxp pro and ethereal works fine

[Noodlez]

commview and wpe = thx
if only i didnt lose commview in a format