THC Snooze

SNOOZE Homepage

Last Change: 05/10/2005

Content

What is Snooze?

THCsnooze is a framework for network traffic analysis. it can be used as a sniffer or a network based intrusion detection system. it will watch the network traffic and invoke small programs ("modules" or "protocol dissectors"), which are easily written in a script language, to gather information from the data.

the possible applications for THCsnooze range from simple and advanced sniffing to passive network auditing. it is possible to write modules that will track a connection until a successful login occured. or you can check if a client application establishes with a ssl enabled server (insecure) SSLv2 connections.

For a short introduction how to write modules please checkout our small HOWTO.

Download

Sourcecode:
Version Date Size md5 File
0.0.7 05/10/2005 95107 e40e4a497db7db9a5cdeeb03348afdc8 THCsnooze-0.0.7.tar.gz

There are no binary packages. We have no plans to change this in the future. For install instructions check out the README from the package.

Contact

If you want to report a bug or submit a patch send an email to members thc org with "[snooze-bug]" as the subject. Before reporting bugs make sure you run the latest version of snooze and check the BUGS file from the source package.

A new module can be submitted by sending an email to members thc org with "[snooze-module]" as the subject. Before you send us a module please check out the modules repository.

Related Projects

snooze needs a broad range of open source projects to run. This list is meant to be exhaustive. If you find something is missing mail us.