Sledování provozu v síti

- paketove orientovane
tcpdump
ethereal (X)
     http://ethereal.zing.org/ 
- session-based
sniffit (nevyviji se)
snort (jeho naslednik, robustnejsi a flexibilnejsi) - monitorovani portu
 (detekce scanovani portu)
http://www.snort.org/, http://underground.cz/544
(snort: IDS pro chude (c) PK)

netxmon
 http://compass.net.edu.cn:8000/netxmon.html
 http://compass.net.edu.cn:8000/self/netxmon_0.6.tgz
- ?
ttywatcher (console, X) http://www.phix.com/~corey/ttywatcher.gif
ksniff
sniffer
XTcpdump (tcl/tk)
czniff
linsniff
iptraf
netwatch
supersniffer: kombinace esniff a tcpdumpu
http://www.mobis.com/ajax/code/ss/ss-1.3.tgz
http://www.quaking.demon.co.uk/ksnuffle.html pro KDE
etherman, nasledovnik etherape
     http://etherape.sourceforge.net/ 
hunt
ttysnoop (ssh?)
psacct?
ngrep
--
Monitory:
sysmon
ftp://puck.nether.net/pub/jared/sysmon-0.82.2.tar.gz
netsaint
bigbrother
http://www.kernel.org/pub/software/admin/mon/mon-0.38.18.tar.gz
http://members.home.com/retep2/esm/esm-1.0.tar.gz
portsentry - monitorovani portu

v. t. http://freshmeat.net/search.php3?query=monitoring
*
ftp://ftp2.zf.jcu.cz/users/zakkr/xxxxx/dumpnet/dumptcplink
- perl skript, ktery zcitelnuje tcpdump
*
  nettop (Console/Networking)
  A top like program for network packets

  ntop (Console/Networking)
  Network usage monitor
http://www-serra.unipi.it/~ntop/ntop.html
*
http://grc.com/oo/packetsniff.htm
*
Advanced Packet Sniffer
http://www.swrtec.de/
*
Weedlog
http://www.firepool.com/weedlog/
*
merice prutoku:

ipmeter
ipacsum
cflowd
http://www.slac.stanford.edu/xorg/nmtf/nmtf-tools.html#public
*
v. t. http://www.root.cz/clanek.phtml?id=387
Linux Journal 2000/04, s. 36
*
Tohle radi primo tcpdump:
	http://www.acm.org/sigcomm/ITA/
	ftp://ftp.ee.lbl.gov/tcpslice.tar.Z
*