Outback - Passiv Packet Analyzer

 

This is the complete documentation of Outback. For qustions to the usage

you can mail me. (The adress you can find under author)

---

 

- Intrduction -

Outback is a passive Network analyzing tool. It is based on the libaries
libnet and libpcap. It captures packets analyze them and print a very
verbose information about the header and the payload of the
packet. It provides also dumping the whole traffic. It captures in a
binary file. This file is compatible to tcpdump, antother good sniffer.
With this you can analyz the logged traffic likly in realtime. At the momment
outback only captures traffic passive. That means that it isn 't able
to capture packets in a switched lan or a wan. I am going to release some
active sniffing methods in the next time.
So have much fun with this tool.

- Installation -

The installation of outback is very simple:

First you have to configure the makefiles:

$ cd /path/to/outback-0.01
$ ./configure

then you have to compile the program:

$ make

after this is done install it:

$ make install

NOTE: For information about the installation look the INSTALL file.

- Usage -

++++ Packet-Analyzer options ++++
-t Print verbose TCP-header
-d Print verbose IP-header
-u Print verbose UDP-Header
-e Print verbose Ethenet-header
-a Print verbose ARP-header
-m Print verbose ICMP-header
-g Print verbose IGMP-header

++++ Filter-Expressions ++++
-f expression Expression (f.e. ''port 21,22,23'')

++++ Capture ++++
-i interface Interface (eth0 default)
-p Enable promiscuous mode\n");
-b n Kill after n Packets

++++ Sniffing mode ++++
-O file Offline Reading from a file(tcpdump file supported)
-V Sniffing from a device(default)

++++ Logging ++++
-D dumpfile Dumping in tcpdump format(Offline Reding)

- Support -

- Bugs -

For Bugs and other problems mail me.SblEndA404@users.sourceforge.net
outback.sourceforge.net

 

Hosted by:

---

Created by SblEndA ©