SmartSniff

SmartSniff Screenshot
  • Rating: SmartSniff Rating
  • Version: 1.38
  • Publisher: www.nirsoft.net
  • File Size: 57.8KB
  • Date: Jun 09, 2008
  • Price: Free
  • License: Freeware
  • Directory:
SmartSniff Download
Free Download SmartSniff 1.38

SmartSniff 1.38 is a Protocol Analyzer product from nirsoft.net, get 5 Stars SoftSea Rating, SmartSniff is a TCP/IP packet capture software that allows you to inspect network traffic that passes through your network adapter. The two pane interface displays the captured packet and detailed information in ASCII or Hex view below. Additional features include color coding of local and remote traffic, export to HTML and more. SmartSniff can use in Windows 2000/XP Raw Sockets or WinPcap for other versions of Windows. A basic, but very small and standalone protocol analyzer.
SmartSniff allows you to capture TCP/IP packets that pass through your network adapter, and view the captured data as sequence of conversations between clients and servers. You can view the TCP/IP conversations in Ascii mode (for text-based protocols, like HTTP, SMTP, POP3 and FTP.) or as hex dump. (for non-text base protocols, like DNS)
SmartSniff provides 3 methods for capturing TCP/IP packets :
Raw Sockets (Only for Windows 2000/XP or outstandinger): Allows you to capture TCP/IP packets on your network without installing a capture driver. This method has some limitations and problems.
WinPcap Capture Driver: Allows you to capture TCP/IP packets on all Windows operating systems. (Windows 98/ME/NT/2000/XP/2003/Vista) In order to use it, you have to download and install WinPcap Capture Driver from this Web site. (WinPcap is a free open-source capture driver.)
This method is generally the preferred way to capture TCP/IP packets with SmartSniff, and it works better than the Raw Sockets method.
Microsoft Network Monitor Driver (Only for Windows 2000/XP/2003): Microsoft provides a free capture driver under Windows 2000/XP/2003 that can be used by SmartSniff, but this driver is not installed by default, and you have to manually install it, by using one of the following options:
Option 1: Install it from the CD-ROM of Windows 2000/XP according to the instructions in Microsoft Web site
Option 2 (XP Only) : Download and install the Windows XP Service Pack 2 Support Tools. One of the tools in this package is netcap.exe. When you run this tool in the first time, the Network Monitor Driver will automatically be installed on your system.
Notice: If WinPcap is installed on your system, and you want to use the Microsoft Network Monitor Driver method, it's recommended to run SmartSniff with /NoCapDriver, because the Microsoft Network Monitor Driver may not work properly
when WinPcap is loaded too.
Using SmartSniff:
In order to start using SmartSniff, simply copy the executable (smsniff.exe) to any folder you like, and run it (installation is not needed).
After running SmartSniff, select "Start Capture" from the File menu, or simply click the green play button in the toolbar. If it's the first time that you use SmartSniff, you'll be asked to select the capture method and the network adapter that you want to use. If WinPcap is installed on your computer, it's recommended to use this method to capture packets.
After selecting the capture method and your network adapter, click the 'OK' button to start capturing TCP/IP packets. while capturing packets, try to browse some Web sites, or retrieve new emails from your email software. After stopping the capture (by clicking the red stop button) SmartSniff displays the list of all TCP/IP conversations the it captured. When you select a specific conversation in the upper pane, the lower pane displays the TCP/IP streams of the selected client-server conversation.
Display Mode
SmartSniff provides 3 basic modes to display the captured data: Automatic, Ascii, and Hex Dump. On Automatic mode (the default), SmartSniff checks the first bytes of the data stream - If it contains characters lower than 0x20 (excluding CR, LF and tab characters), it displays the data in Hex mode. otherwise, it displays it in Ascii mode.
You can easily switch between display modes by selecting them from the menu, or by using F2 - F4 keys. Be aware that 'Hex Dump' mode is much slower than Ascii mode.
Starting from version 1.35, there is a new mode - 'URL List'. This mode only display the URL addresses list (...) found in the captured packets.
Exporting the captured data
SmartSniff allows you to easily export the captured data for using it in other applications:
The upper pane: you can select one or more items in the upper pane, and then copy them to the clipboard (You can paste the copied items into Excel or into spreadsheet of OpenOffice.org) or save them to text/HTML/XML file (by using 'Save Packet Summaries').
The lower pane: You can select any part of the TCP/IP streams (or select all text, by using Ctrl+A), copy the selected text to the clipboard, and then paste it to Notepad, Wordpad, MS-Word or any other editor. When you paste the selected streams to document of Wordpad, OpenOffice.org, or MS-Word, the colors are also transferred.
Your can also export the TCP/IP streams to text file, HTML file, or raw data file, by using "Export TCP/IP Streams" option.
Live Mode
Starting from version 1.10, a new option was added to 'Advanced Options' section - 'Live Mode'. When SmartSniff capture packets in live mode, the TCP/IP conversations list is updated while capturing the packets, instead of updating it only after the capture is finished. Be aware that "Live Mode" requires more CPU resources than non-live mode. So if your computer is slow, or your have a very high traffic on your network, it's recommended to turn off this option.
Starting from version 1.20, you can also view the content of each TCP/IP conversation (in the lower pane) while capturing the packets. However, if the TCP/IP conversation is too large, you won't be able to watch the entire TCP/IP conversation until the capture is stopped.
Viewing process information
Starting from version 1.30, you can view the process information (ProcessID and process filename) for captured TCP packets. However, this feature have some limitations and problems:
Process information is only displayed for TCP packets (It doesn't work with UDP)
Process information may not be displayed for TCP connections that closed after short period of time.
Retrieving process information consume more CPU resources and may slow down your computer. It's not recommended to use this feature if you have intensive network traffic.
Process information is currently not saved in ssp file.
In order to activate this feature, go to 'Advanced Options' dialog-box, check the "Retrieve process information while capturing packets" option and click the 'OK' button. 2 new columns will be added: ProcessID and Process Filename. Start capturing, and process information will be displayed for the captured TCP conversations. The license of this networking software is Freeware, you can free download and free use this Networking software.

Protocol Analyzer Software Related Titles:
NetworkActiv PIAFCTM
This enables you to capture and analyze IP packets, search for keywords in the content and set various filters to limit capture to the packets you`re interested in.

Serial Monitor
This program is a utility serial port monitor Rs232 sniffer with protocol analyzer and packet data logger.

MaaTec Network Analyzer
This network analyzer gives an online view of incoming packets.

RS232 Com Monitor
This program is a software for monitoring, troubleshooting and logging RS232 communication.

EtherDetect Packet Sniffer
EtherDetect Packet Sniffer is an easy-to-use packet sniffer and network protocol analyzer.

Colasoft Capsa Professional
Expert network analyzer designed for packet decoding and network diagnosis, Colasoft Capsa monitors the network traffic transmitted over a local host and a local network, helping network administrator

Colasoft Packet Builder
This enables network administrators to create custom network packets, including ARP, IP, TCP and UDP packets.

EtherSnoop
This program is a basic network sniffer, that can capture all packets going through the network, including dial-up connection or network Ethernet card.

VisualSniffer
This software performs protocol analyses, real-time content searches and matches, and notifies users by e-mail, sound and text message when intrusion is detected.It detects buffer overflows, port scans

Protocol Analyser
This software captures and analyzes serial protocols.

Port Forwarding Wizard
Port Forwarding Wizard is infinite port forwarding until the destination ip address is achieved.Wind

Scrutinizer NetFlow & sFlow Analyzer


USBTrace
USBTrace is a software-only USB Protocol Analyzer for Windows.

Serial Com Port Monitor
Designed for RS232/422/485 COM ports monitoring. It monitors, displays, logs and analyzes all serial port activity in a system and solves problems of debugging computer connection with peripheral devi

z/Scope Express 3270 Terminal Emulator
z/Scope Express 3270 is a light-weight, fast and secure terminal emulator, featuring an integrated

Anasil
This program network analyzer and protocol decoder for distributed Ethernet networks is based on

Report Grabber
Capture RS-232 data from up to 8 serial devices. Incoming data can be time and date stamped and saved to either a local or network drive.

EffeTech HTTP Sniffer
EffeTech HTTP Sniffer is a HTTP packet sniffer, protocol analyzer and file reassembly program based

TracePlus Win32
TracePlus/Win32 allows you to monitor and analyze the interaction between your Win32 software and multiple Win32 APIs.

SerialMon
Freeware RS232 serial port monitor/sniffer which additionally can decode ABB RP570 protocol.

Protocol Analyzer Software Related Category Page:
Page: 1   2   3