Security Database - NetworkMiner v0.89 - Network Forensic Analysis Tool

ARTICLE NetworkMiner v0.89 - Network Forensic Analysis Tool

Friday 11 September 2009 - 1840 read - ( Keywords : Data Mining , Forensics , Network Monitoring , NetworkMiner )

NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network.

NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates from PCAP files.

The purpose of NetworkMiner is to collect data (such as forensic evidence) about hosts on the network rather than to collect data regarding the traffic on the network. The main view is host centric (information grouped per host) rather than packet centric (information showed as a list of packets/frames).

NetworkMiner is licensed under GNU General Public License (GPL).

POSTSCRIPTUM

Download NetworkMiner v0.89

COMPLIANCE MANDATES

Forensics : PCI DSS 10.2, 12.9, A.1.4*, SOX DS7, HIPAA 164.308(a)(1) and (a)(6), FISMA IR-7, ISO 27001/27002 13.2.1, 13.2.3 *Shared Hosting Providers Only

Network Monitoring : PCI DSS Requirements 3, 4, SOX DS13.4, HIPAA 164.310(d)(1), 164.312(a)(2)(iv), FISMA SI-4, AU-2, ISO 27001/27002 12.5.4, 15.1.5

Data Mining,

Forensics,

Network Monitoring,

NetworkMiner,

22 November 2009 : NetworkMiner updated to v0.91

10 November 2009 : NetworkMiner v0.90 released!

11 September 2009 : NetworkMiner v0.89 - Network Forensic Analysis Tool

7 June 2009 : NetworkMiner v0.88 released

10 December 2008 : NetworkMiner V0.87 released

POSTSCRIPTUM

COMPLIANCE MANDATES

RELATED ARTICLES