Shulou(Shulou.com)06/01 Report--

This article mainly explains "how to install Justniffer on Ubuntu15.04". Interested friends may wish to have a look. The method introduced in this paper is simple, fast and practical. Let's let the editor take you to learn how to install Justniffer on Ubuntu15.04.

Justniffer is a network protocol analyzer that can be used as an alternative to Snort. It is very popular and can interactively track / detect a network connection. It grabs traffic from real-time environments and supports "lipcap" and "tcpdump" file formats. It can help users analyze a complex network that is difficult to grab packets with wireshark. In particular, it can effectively help you analyze application layer traffic and extract http content such as images, scripts, HTML and so on. Justniffer helps to understand how different components communicate.

Function

Justniffer can collect all traffic from a complex network without affecting system performance, which is one of the advantages of Justniffer. It can also save logs for later analysis. Other important features of Justniffer include:

1. Reliable TCP stream reconstruction

It can be used to record and reproduce TCP and IP fragments using a portion of the host Linux kernel.

two。 Journal

Save the log for later analysis, and you can customize the content and time of the save.

3. Scalable

Some additional results can be obtained from the analysis report through external python, perl, and bash script extensions.

4. Performance management

Extract information based on connection time, shutdown time, response time, or request time.

Installation

Justniffer can be installed through PPA:

Run the following command to add a library:

$sudo add-apt-repository ppa:oreste-notelli/ppa

Update the system:

$sudo apt-get update

Install the Justniffer tool:

$sudo apt-get install justniffer

Make failed, and then I ran the following command and tried to reinstall the service

$sudo apt-get-f install

Example

First verify the installed version of Justniffer with the-v option, and you need to use the tool with superuser privileges.

$sudo justniffer-V

Sample output:

1. Export eth2 interface traffic in a format similar to apache and display it to the terminal.

$sudo justniffer-I eth2

Sample output:

two。 You can use the following options to track running tcp streams

$sudo justniffer-I eth2-r

Sample output:

3. Get the response time of the web server

$sudo justniffer-I eth2-a "% response.time"

Sample output:

4. Use Justniffer to read a file crawled by tcpdump

First, use tcpdump to grab traffic.

$sudo tcpdump-w / tmp/file.cap-s 0-I eth0

Then access the data with Justniffer

$justniffer-f file.cap

Sample output:

5. Only crawl http data

$sudo justniffer-I eth2-r-p "port 80 or port 8080"

Sample output:

6. Get the http data of a specified host

$justniffer-I eth2-r-p "host 192.168.1.250 and tcp port 80"

Sample output:

7. Grab data in a more precise format

When you type justniffer-h, you can see a lot of format keywords for getting data in a more precise way.

$justniffer-h

Sample output:

Let's use Justniffer to extract data based on predefined parameters.

$justniffer-I eth2-l "request.timestamp request.header.host request.url response.time"

Sample output:

There are many options you can explore.

Summary

Justniffer is a good tool for network testing. In my opinion, Justniffer is a simpler tool for users who use Snort for network exploration. It provides a lot of format keywords to extract data precisely according to your needs. You can record network information in .cap file format, which can then be used to analyze and monitor network service performance.

At this point, I believe you have a deeper understanding of "how to install Justniffer on Ubuntu15.04". You might as well do it in practice. Here is the website, more related content can enter the relevant channels to inquire, follow us, continue to learn!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.