Favorite Networking Tools

[nessus]

TCPView - Free

When you need to know what ports your develepors' latest custom app uses on Windows, and no one one their entire team has a clue but they still expect you to fix the firewall to allow "their" traffic anyway because they are supposed to be in production in less than 24 hours and they are just now getting around testing the app in the final production configuration.

"It always worked on our other clients' networks with no problem. Of course, our implentations were smaller there..."

or

"It was custom written for us 8 years ago and was designed to run on '95 over IPX/SPX, but our new large production process that we are about to roll out needs this to work until the second phase deployment when we'll be updating that piece. We've thrown together a hack to get it working over Winsock on TCP/IP, but I don't know what ports we're using..."

or

"I'm not sure what the names of the exe's are that are supposed to be waiting for incoming data, not to mention which ports they use."

I hate those phrases.

 

[ZoT]

I haven't read the entire thread, but I noticed Servers Alive was listed as "trial", that is incorrect, you can use SA to check up to 10 things for free and it is fully legal to use it in that manner.

Of course once you realize how great it is you'll be checking hundreds of things accross LAN/WAN so you'll end up paying for it anyway

 

[TechLarry]

Is there a free, simple version of something like this that maps out networks and creates charts?

-Larry

3COMs Network Supervisor is a pretty good tool for getting a picture of new/strange networks you're taking over.

 

[TechLarry]

GFI Languard has the ability to look past SecureClient Firewalls and ping a device to see if one exists. This is useful for scanning IP's to be sure a 'rogue' hasn't stolen it prior to it being assigned as a static.

Only problem is, for that one purpose, GFI is like hitting a small nail with a really, REALLY big hammer.

I'm looking for a new, small, free, simple scanner that can look at an IP and tell me if anything is there, and what it is (printer, Netbios name, etc...) but it also has to be able to get past the ICMP block in SecureClient.

I have no idea how GFI does this, but it does.

-Larry

In my experience LANGuard is deployed more so as a way to check up what your server has installed (or not installed), example would be security patches, what ports are open, services running, etc. Look@LAN has always been used as a monitoring tool for what your servers and network devices are doing and how they are performing (more network stats than anything else).

GFI is a great company as far as support goes. I cant speak for Look@Lan support as I have never had a reason to ping them about anything.

Is there a certain functionality you are trying to obtain or are concerned about?

 

[Teecee]

telnet/ssh client
nagios
cacti
Cisco WLSE and other cisco products
Zenworks
dos commands
www.hyperspin.com for external server/service monitoring
joomla for documentation
netstumbler
ethereal
snort

 

[Baredor]

Is there a free, simple version of something like this that maps out networks and creates charts?

-Larry

All my attempts to get Network Supervisor result in a page saying the product is discontinued. Am I just missing something?

 

[flboad]

Everyone's listed all the good ones above. But i use this for anything i open.

ConTexT
http://www.context.cx/

Great Text editor for Every and anytype of file. Php,WSH,C+,.ini etc etc..

 

[moetop]

Found Stanfords list of tools. It's pretty impressive. worth a bookmark

Some free some not

 

[Blitzrommel]

Nice find moe, totally bookmarked.

 

[xeon711]

Nice find moe, totally bookmarked.

X2 Good site and great tools.

 

[goodcooper]

for the most part, you guys are covering all the basics that i use...

FREE: http://www.rejetto.com/hfs/ nice super simplistic and extremely small footprint HTTP server...

FREE ( + windows licence): http://www.nu2.nu/pebuilder/ its sooo time consuming, but so incredibly powerful... BARTPE, very customizable, i like to create nearly stock disks with as many network drivers as humanly possible on it, then put the simple programs i use for backing up or checking volumes on it, add ghost32... its like bartpe and ghost32 were made for each other

FREE: http://www.yadabyte.com/Yadabyte_Portables.php yadabyte passwords, i know password managers are lame, but i like the simplicity and security of this one... it is a lot safer than using a handful of passwords over and over again... and it is a lot easier than reregistering on websites that you've forgotton the password for... AND cold booting networking hardware that you've totally forgot the username or password for

most of the others you guys already mentioned... some of my favorites are netstumbler, filezilla, angry ip scanner, and a few very simple tools i wrote up in VB to automate the editing of some network settings in the registry

 

[elguapo]

Everything else is already listed above, but living in a college dorn with 120 other computer and software engineers, I must recommend XArp (free!) for anti-arp poisioning attacks. Unortunately (and in cases fortunately ) Cain has made it far too easy to execute an arp poising attack (from windows anyways). This is the simplest tool I have found to at least alert you to its occurence. Of course, my solution has always been static arp tables, but it's nice to know what's going on anyways.

 

[rtierney]

BackTrack

Love it...very well done network security live CD.

 

[Mister Natural]

insecure.org has just listed the top 100 network security tools. Find it here.

 

[-(Xyphox)-]

I think any of the Free tools should be noted as such.

I use many of the above tools , but heres a few more.

Solarwinds Subnet Calculator (Free)
Ultimate boot CD (free)

Brads bootdisk (free)

The Ulitimate Boot cd is a Great CD to have in your collection
I use mainy of the tools listed along with packet tracer when i am board
I also use Spin Rite and other Great grc software
GRC- Shields Up!
Oh... who needs a subnet Calculator should do it in your haed

 

[moetop]

Wireless intrusion detection AIRSNARE


"AirSnare is another tool to add to your Wireless Intrusion Detection Toolbox. AirSnare will alert you to unfriendly MAC addresses on your network and will also alert you to DHCP requests taking place. If AirSnare detects an unfriendly MAC address you have the option of tracking the MAC address's access to IP addresses and ports or by launching Ethereal upon a detection"

 

[moetop]

The Ulitimate Boot cd is a Great CD to have in your collection
I use mainy of the tools listed along with packet tracer when i am board
I also use Spin Rite and other Great grc software
GRC- Shields Up!
Oh... who needs a subnet Calculator should do it in your haed

You are assuming I and others actualy have a head.. ,and when you deal with 255.255.255.0 98% of the time you actualy find them usefull. (Yes I can do it by hand but why when you have a computer)? It's like saying I know Pie out to the 30'th digit. It's usefull, but why clutter the brain with that info. Mid 80's sitcom trivia is a much better use for that storage space. (god I wish I could forget that stuff)

 

[-(Xyphox)-]

You are assuming I and others actualy have a head.. ,and when you deal with 255.255.255.0 98% of the time you actualy find them usefull. (Yes I can do it by hand but why when you have a computer)? It's like saying I know Pie out to the 30'th digit. It's usefull, but why clutter the brain with that info. Mid 80's sitcom trivia is a much better use for that storage space. (god I wish I could forget that stuff)

Rofl... dont we all I am so use to doing subnet stuff i never use a calc anymore
i can do it faster in my head...

 

[moetop]

Ok 1 new thing (I think it's new) and one update.

The new thing is Wildpackets has a FREE version of their sniffer software. Omnipeek

Ethereal is now know as Wireshark.

 

[RaceFace[CS]]

Observer.

www.networkinstruments.com

How do you like Observer. I am working for a telecommunication company. We mostly sell Shoretel VOIP systems and I am trying to locate a good VOIP analyzer software. We currently use VIOLA, but it is pricey and only tells you if you pass or fail the VOIP test and I would like a software that can atleast show me where a potential problem is.

 

[fattmarrell]

IPnote for my laptop (Amazing when trying to troubleshoot connections) - only 8 bucks, but theres a free month trial here:
http://www.ipnote.com/?action=download

MyIpnote for all the servers I manage - www.myipnote.com

I highly recomend both if you do any kind of IT work.

 

[Xipher]

Ettercap for watching traffic on a switched network, tag teamed with Ethereal.

 

[Stang Man]

Ethereal
Etherape
Ettercap
Snort
Nessus
Metasploit
Milworm
Hydra
Kismet
BT Audit
OpenSSH

Perl

 

[trikster2]

On the free side of the house, note that ethereal is now wireshark (of all things)

the ethereal web site is still there but the lead developer has moved on, for the latest version of wireshark/ethereal go to

http://www.wireshark.org/

Also wild packets has now made a free version of their omnipeek packet capture software available. If you ever wanted to full around with some of the visulization tools available for the big $$$$$ check out:

http://www.omnipeek.com/omnipeek_personal.php


Oh bother, it looks like McAfee brought them out, but still posted for now are the free foundstone tools:

http://www.foundstone.com/index.htm...ation.htm&subcontent=/resources/freetools.htm

 

[Stang Man]

forgot to add p0f to the list... by Michal Zalewski

 

[tripleplay905]

I use Cain and Abel. It is the best hacking/security tool i have ever used and will most likely will stay that way.

 

[Stang Man]

I use Cain and Abel. It is the best hacking/security tool i have ever used and will most likely will stay that way.

eh.. why limit yourself to only C&A? there are many other security tools out there, and there is so much more yet to be done.

Learn C, and start creating your own security tools

 

[moetop]

oputils

Free version and a pay for version.

Just to note you download the free version and it warns that it is trial.. It is the full version and will disable the tools that are not free after 15 days.

 

[moetop]

In another thread someone else mentioned it and thought it was a good tool.

FREE teraterm pro http://www.ayera.com/teraterm/

Great telnet/com terminal.

 

[MorfiusX]

Cacti - Free SNMP network monitor
http://www.cacti.net

BackTrack - Linux LiveCD for security testing
http://www.remote-exploit.org/index.php/BackTrack

UltraVNC - Free VNC, has a great reverse connection (Single Click) feature
http://ultravnc.sourceforge.net/

OCS Inventory NG - Free network auditor
http://ocsinventory.sourceforge.net/

IP Chicken - Quick way to find out your external IP for Free
http://ipchicken.com/

WinGuides Password Generation - Randomly generate passwords for Free
http://www.winguides.com/security/password.php

Gibson Research - A varity of free tools including a firewall testing utility
http://www.grc.com/

Endian Firewall - One of the best Free Linux firewall distros
http://www.endian.it/en/

DNS Stuff - Free set of tools for testing DNS
http://www.dnsstuff.com/

 

[calvinwells]

Missouri is a very inexpensive, very powerful, and very unique server monitor. Try a demo at www.ezlookin.com

 

[smizack]

SolarWinds sweet network monitor software.

 

[AMD_Gamer]

Cisco network assistant
ethereal
network stumbler
Microsoft Visio for making network diagrams

 

[WesM63]

If it hasn't been mentioned, Back Track Linux Live CD. Has every tool under the sun need on one cd! Free as well, can't beat that.

 

[cna2008]

1.Expert Packet Sniffer and Protocol Analyzer -Colasoft Capsa

Packet Builder, Packet Player, Ping Tool and MAC Scanner
Active Matrix View
Dynamic Physical, IP, TCP and UDP conversations between pairs of endpoints
Real-time packet decoding
Expert network diagnosis module
Summary statistics, endpoints statistics and protocols statistics
Analysis logs including email messages, FTP transfers, HTTP requests and DNS
Multiple charts and options to display statistic information
Statistic reports

2.Monitor Product - Colasoft EtherLook

Easy to Use Network Traffic and Content Monitor
Colasoft EtherLook is an easy to use yet, powerful TCP/IP network tool for the Windows-based platforms. With real time monitoring of all network traffic, including email transmissions, HTTP accesses and logins, you can manage and supervise the corporate network more easily and efficiently.

Free Network Tools:
1.Colasoft Packet Builder
Constructing your own custom packets and sending them into the network, Colasoft Packet Builder provides you very powerful editing feature, it featuring a Decoding Editor which allows you edit specific protocol field value much easier.

2.Colasoft Packet Player
Open captured packet trace file and playback it into the network, Colasoft Packet Player supports many packet trace file formats created by sniffer software such as Colasoft Capsa, Ethereal, Network General Sniffer and WildPackets EtherPeek/OmniPeek etc, it also support burst mode and loop sending.

3.Colasoft MAC Scanner
Scan IP address and MAC address on your network, it automatically detects all subnets and supports multiple NICs, results can be exported to text and CSV files.


4.Colasoft Ping Tool
Colasoft Ping Tool is a powerful graphic ping tool, it supports ping multiple IP addresses at the same time, and compares response time in a graphic chart.

Free Download at http://www.colasoft.com

 

[Jon855]

A chainsaw...

 

[Xipher]

..cut for brevity...

Does that look like an advertisement to any one else, both of the only 2 posts made by this user are for the same company, and sound like ads.

 

[cna2008]

I used that for about 3 years, and it is so geat and I like it, so I just recommend it to others. No ad., I am a network adm. in my company.

 

[BobSutan]

I've added this thread to the Networking FAQ so I can unsticky it.

http://www.hardforum.com/showthread.php?p=1026346826

 

[moetop]

Zenoss (Open source) Network monitoring. Has the ability to use nagios as a plug in.