Linux SoftwareSystemNetworkingtcpflow 0.21

tcpflow 0.21


tcpflow is a program that captures data transmitted as part of TCP connections, and stores the data in a way that is convenient for p
Developer:   Jeremy Elson
      more software by author →
Price:  0.00
License:   GPL (GNU General Public License)
File size:   29K
Language:   
OS:   
Rating:   0 /5 (0 votes)
Your vote:  
enlarge screenshot


tcpflow is a program that captures data transmitted as part of TCP connections, and stores the data in a way that is convenient for protocol analysis or debugging.

A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being transmitted. In contrast, tcpflow reconstructs the actual data streams and stores each flow in a separate file for later analysis.

tcpflow understands sequence numbers and will correctly reconstruct data streams regardless of retransmissions or out-of-order delivery. However, it currently does not understand IP fragments; flows containing IP fragments will not be recorded properly.

tcpflow is based on the LBL Packet Capture Library (available from LBL) and therefore supports the same rich filtering expressions that programs like 'tcpdump' support.

tcpflow stores all captured data in files that have names of the form

128.129.130.131.02345-010.011.012.013.45103

where the contents of the above file would be data transmitted from host 128.129.131.131 port 2345, to host 10.11.12.13 port 45103.

I originally wrote this program to capture the data being sent by various programs that use undocumented network protocols in an attempt to reverse engineer them. RealPlayer (and most other streaming media players), ICQ, and AOL IM are good examples of this type of application. It should be compiled under most popular versions of UNIX; see the INSTALL file for details.

In tinkering with it, I later also found tcpflow to be useful for checking to see what cookies my browser was sending to various sites, looking at the MIME headers of HTTP requests people are sending to my web server, and verifying that various connections to my machine that were supposed to be encrypted actually were encrypted.
tags the data  file for  128 129  data streams  like tcpdump  and stores  data transmitted  

Download tcpflow 0.21


 http://www.circlemud.org/pub/jelson/tcpflow/tcpflow-0.21-1.i386.rpm
 http://www.circlemud.org/pub/jelson/tcpflow/tcpflow-0.21-1.src.rpm
 http://www.circlemud.org/pub/jelson/tcpflow/tcpflow-0.21.tar.gz


Authors software

tcpflow 0.21 (by Jeremy Elson)
tcpflow is a program that captures data transmitted as part of TCP connections, and stores the data in a way that is convenient for p


Similar software

tcpflow 0.21 (by Jeremy Elson)
tcpflow is a program that captures data transmitted as part of TCP connections, and stores the data in a way that is convenient for p

TCPreen 1.4.2 (by R?mi Denis-Courmont)
TCPreen is a simple tool to monitor and analyze data transmitted between clients and servers through connection-oriented streams data

TCP Re-engineering Tool 1.4.3 (by R?mi Denis-Courmont)
TCPreen is a simple tool to monitor and analyze data transmitted between clients and servers through connection-oriented streams data

rtdump 1.0 (by S. Krishnan)
Rtdump is a version of tcpdump modified to capture traffic on remote systems and networks

RPCAP 0.23 (by S. Krishnan)
RPCAP is a Remote Packet Capture system

netAI 0.1 (by Sebastian Zander and Nigel Williams)
netAI comes from Network Traffic based Application Identification and has been developed for identifying the end host applications th

Softflowd 0.9.8 (by Damien Miller)
Softflowd project is flow-based network traffic analyser capable of Cisco NetFlow data export

EHNT 0.4 (by Nik Weidenbacher)
EHNT is a tool which turns streams of Netflow (version 5) data into something useful and human-readable

Aimwatch 0.9.1 beta (by Bryan Schneiders)
Aimwatch is a packet sniffer designed to reconstruct AOL Instant Messenger and ICQ information by passively collecting packets from t

flow-tools 0.68 (by Mark Fullmer)
flow-tools is a set of programs for processing and managing NetFlow exports from Cisco and Juniper routers


Other software in this category

Nmap 4.20 (by Fyodor)
Nmap is a utility for network exploration or security auditing

iptables 1.3.7 (by Harald Welte)
iptables and netfilter are building blocks of a framework inside the Linux 2.4.x and 2.6.x kernel

Linux Bandwidth Arbitrator 9.62 (by astormchaser)
Linux Bandwidth Arbitrator allows beginning-to-advanced network administrators to control bandwidth

Ettercap 0.7.3 (by ALoR NaGA)
Ettercap is a network sniffer/interceptor/logger for ethernet LANs

rdesktop 1.5.0 (by matthewc)
rdesktop is an open source client for Windows NT Terminal Server and Windows 2000/2003 Terminal Services, capable of natively speakin

    search


Featured Software

jEdit 4.3 pre8
jEdit is an Open Source text editor written in Java

Opera 9.02
Surf the Internet in a safer, faster, and easier way with Opera browser

GNU Aspell 0.60.4
GNU Aspell is a Free and Open Source spell checker designed to eventually replace Ispell


Subscribe in Rojo
Google Reader
Add to My Yahoo!

Add to My AOL
Subscribe with Bloglines
Subscribe in NewsGator Online
Add 'nixbit linux software' to Newsburst from CNET News.com
del.icio.us nixbit linux software


Top tags