• 0

Q: Network analyzing & collecting tools?


Question

Dutchie64

Hi all,

Apologies if this has a thread somewhere....

I would like to know what people are using for network analyses, free/OSS or paid solutions.
And with analysis I mean a more or less simple way to collect data about:
- All computers on the network,
- The OS and applications installations/versions
- Network traffic/port use

So a 'security risk' based check of the hardware and software running, so you can plan some security hardening on your systems.

I know about applications like WireShark for network traffic checks, but would like to know if there are applications out there that can collect a lot of data at once.
There's quite a few apps out there, but it's interesting to see what people actually using for this.

cheers for any tips, links etc.

rob

Link to post
Share on other sites

5 answers to this question

Recommended Posts

  • 0
+BudMan

It helps do understand what actual hardware your working with.. For your switches for example - do they support snmp, can they send flows?  Do they support span ports.

 

Its highly unlikely that all the things you mentioned can be handled all by the same tool.

Link to post
Share on other sites
  • 0
sc302

Nagios can do a lot, so can splunk, and even graylog.  Network teams use a specific set of software, desktop teams use a different set of software, systems teams might use a combination.  

Link to post
Share on other sites
  • 0
goretsky

Hello,

 

It sounds like you are looking for a device management solution, like Connectwise, Kaseya, Microsoft Intune, SolarWinds, etc.

There are some enterprise security programs out there, usually marketed as endpoint anti-malware or endpoint detection and response (EDR) that do this as well.

Regards,

Aryeh Goretsky

Link to post
Share on other sites
  • 0
Dutchie64

Cheers all!

What about the KomodoLabs tools, Slitheris & Newt? Anyone has experience with these tools? Or are these too 'lightweight'?

But thanks for all the tips! Will investigate further on this :)
And I don't mind using several tools, as long as some of the data will come out on top at some point.


@goretsky: Are you linked to ESET in some way? Just curious ;)

 

Link to post
Share on other sites
  • 0
goretsky

Hello,

I'm one of the many researchers that works at ESET, @Dutchie64.

Regards,

 

Aryeh Goretsky

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

  • Similar Content

    • By Namerah S
      Grammarly revamps iPad app, adds new features
      by Namerah Saud Fatmi

      Grammarly introduced a bunch of new features in its latest update for its iPadOS application today. The updates improve the user experience on the iPad app by integrating the features provided by Grammarly - spellchecking, synonym suggestions, and other grammatical assistance - more seamlessly into the UI.

      Previously, iPad users had to head over to the tab's browser to access the Grammarly Editor. This lengthy process of copying and pasting content just to edit it has now been shortened and made easier thanks to today's updates. Starting today, iPad users can access the editor from the Grammarly Keyboard app directly.

      As for the Grammarly Editor itself, that has also been upgraded. The new optimized version of the editor enables users to create and save new documents and manage other documents synced to their accounts once signed in. Other features rolled out today include support for hardware keyboards, keyboard flicks and iPad-optimized layouts.

      And finally, the last new addition to the Grammarly Keyboard for iPadOS is a feature called the 'insights' tab, similar to the weekly progress reports emailed to users called Grammarly Insights. Users can tap on the new tab to access their weekly writing statistics and track their improvements by comparing the number of words written, the accuracy of the language and the vocabulary used.

      Grammarly's latest update for the iPad app is currently rolling out and should be installed automatically based on the settings. Alternatively, users may download it manually from the App Store.

    • By dipsylalapo
      Hey everyone, 
       
      I haven't touched my network setup in a long time as it's been working with no issues for months. 
       
      Over the last week or so, I've noticed that some devices struggle to stay connected to the network. At the moment, there's a Kindle and a desktop that are struggling to stay connected. 
       
      I've no idea where to start looking into this so any pointers would be great!
       
      I have a USG, two Unifi APs (Lite) and a D-Link switch (DGS-1100-08P).
    • By News Staff
      Get the Ultimate Cybersecurity Certification Bundle for only $39.99
      by Steven Parker



      Today's highlighted deal comes via our Online Courses section of the Neowin Deals store, where you can save 52% off the Ultimate Cybersecurity Certification Bundle. Your 28-hour roadmap as an ultimate security professional — Master network monitoring, PenTesting, and routing techniques and vulnerabilities.

      What's the deal?
      This deal consists of the following courses:

      Parsing TCP Socket Data with C/C++
      Understand Socket Programming & Build Apps in Your Network or Internet Introduction of C++ Sockets
      Learn the Most Fundamental & Practical IT Communications & Develop Your Own Socket Apps How Hackers Find SQL Injections in Minutes with Sqlmap
      Effectively Detect & Exploit SQL Injection Vulnerabilities — Ideal for Penetration Testers, Ethical Hackers, Bug Hunters, and More How Web Hackers Make Big Money: Remote Code Execution
      Become a Succesful RCE Hunter with 1-Hour Crash Course from Top Hacker Dawid Czagan Double Your Web Hacking Rewards with Fuzzing
      Learn the Vulnerability Detection Technique Used by Many Successful Hackers & Make Money in Bug Bounty Programs Practical Blockchain & Smart Contracts: Ethereum and Solidity
      Implement Blockchain in Your Software Projects & Upcoming Project Ideas CCNP Routing & Switching ROUTE300-101
      Join the Professional World of Cisco Systems & Gain a Higher Level of Routing Competence Setting up Nagios 4 Monitoring
      Set Up a Monitoring Console Showing the Health of Multiple Remote Servers The Ethical Hacking MasterClass
      Perform Advanced Penetration Testing, Exploit Vulnerable Systems & Patch Them Good to know
      Length of access: lifetime Certification of completion included Redemption deadline: redeem your code within 30 days of purchase For full descriptions, terms, and instructor info please click here.

      What's the benefit?
      This Ultimate Cybersecurity Certification Bundle normally costs $84.91 but it can be yours for just $39.99 for a limited time, that's a saving of $44.92 (54%) off!

      >> Get this deal, or learn more about it <<
      See all Online Courses on offer, This is a time-limited deal, ending soon!
      Get $1 credit for every $25 spent · Give $10, Get $10 · 10% off for first-time buyers.

      Not for you?
      If this offer doesn't interest you, why not check out the following offers:

      The Samsung Galaxy Z Flip 256GB Giveaway 20% off Ivacy VPN subscription with coupon code IVACY20 NordVPN subscription at up to 70% off Private Internet Access VPN subscription at up to 71% off Unlocator VPN or SmartDNS unblock Geoblock with 7-day free trial Disable Sponsored posts · Other recent deals · Preferred partner software

      Disclosure: This is a StackCommerce deal or giveaway in partnership with Neowin; an account at StackCommerce is required to participate in any deals or giveaways. For a full description of StackCommerce's privacy guidelines, go here. Neowin benefits from shared revenue of each sale made through our branded deals site, and it all goes toward the running costs.

    • By Namerah S
      Vine resurrected in the form of Byte, out now for Android and iOS
      by Namerah Saud Fatmi

      Back in 2018, Vine co-creator Dom Hofmann announced that he was working on creating a similar social media application to succeed the popular video-looping app. At that time, it had already been two years since Twitter had killed its famed six-second video sharing platform.

      It's a little past the original slated release - spring of 2019 - but the app is finally here. Called Byte, the successor to Vine is out now for the iOS and Android platforms. Much like its predecessor, Byte also focuses on creating and sharing content in the form of looped videos which last six seconds.

      Back when Vine was still alive and thriving, there were far fewer social media platforms available with relatively smaller user bases. It will be interesting to see how this revamped new version of Vine performs in the current world of social media which is now overpopulated with similar apps such as TikTok, Likee, Instagram and Snapchat.

      The stable version of Byte is rolling out now and can be downloaded free of charge from the Google Play Store for Android users and the App Store for iOS users.

    • By Usman Khan Lodhi
      GitHub launches the beta version of its Android app
      by Usman Khan Lodhi



      GitHub, the largest code hosting service in the world, announced at GitHub Universe 2019 that it would be making its way to the iOS and Android platforms. Although the company released an Android app in 2012, it was later removed from the Google Play Store in 2015. GitHub has released its Android beta version today which focuses on "making these tasks easier to complete while you’re on the go, with a fully-native experience."

      Although the app lets users browse through repositories, share feedback in discussions, and carry out searches among other features, it is not possible to view code unless it is part of a merge request. Users can only view the README file for each repository.

      For now, the app is only available to a limited number of developers via email invite links who earlier signed up for the Android beta waitlist. For those who missed out on signing up, GitHub says that it will increase the number of seats for the beta app "as they become available." You may click here to sign up for the waitlist.

      Via Android Police