NEPAL
Network passive analyser
Ukázky z programu
Modul HTTP
Date RTT code saddr:sport daddr:dport URL, content-type, length
20-07-2010 22:36:32.316864 0.023053 304 192.168.2.104:60469 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/01-u-1-16_thm.jpg , 0 B
20-07-2010 22:36:32.316549 0.023479 304 192.168.2.104:60468 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/01-u-1-11_thm.jpg , 0 B
20-07-2010 22:36:32.336661 0.022132 304 192.168.2.104:60470 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/01-u-1-20_thm.jpg , 0 B
20-07-2010 22:36:32.336925 0.130986 304 192.168.2.104:60471 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/01-u-1-23_thm.jpg , 0 B
20-07-2010 22:36:32.558196 0.128240 304 192.168.2.104:60472 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/01-u-1-24_thm.jpg , 0 B
20-07-2010 22:36:32.559527 0.267189 304 192.168.2.104:60473 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/01-u-1-26_thm.jpg , 0 B
20-07-2010 22:36:33.697954 0.773284 304 192.168.2.104:60475 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/02-a-cusco.jpg , 0 B
20-07-2010 22:36:33.751182 0.834927 304 192.168.2.104:60476 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/02-u-02-01_thm.jpg , 0 B
20-07-2010 22:36:33.804483 0.898968 304 192.168.2.104:60477 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/02-u-02-02_thm.jpg , 0 B
20-07-2010 22:36:34.284908 0.752041 304 192.168.2.104:60478 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/02-u-02-07_thm.jpg , 0 B
20-07-2010 22:36:34.354250 0.896860 304 192.168.2.104:60479 82.208.6.4:80 http://www.bagr.cz/hanz/2005_peru/02-u-04-02_thm.jpg , 0 B
20-07-2010 22:36:38.208687 0.974960 200 192.168.2.104:59078 195.122.208.167:80 http://www.devnull.cz/docs/index.html text/html, 4453 B
20-07-2010 22:36:40.87215 0.336974 301 192.168.2.104:59078 195.122.208.167:80 http://www.devnull.cz/greece text/html, 304 B
20-07-2010 22:36:40.667312 1.034904 200 192.168.2.104:59079 195.122.208.167:80 http://www.devnull.cz/greece/ text/html, 2848 B
20-07-2010 22:37:00.83940 6.748143 301 192.168.2.104:59085 195.122.208.167:80 http://www.devnull.cz/elona text/html, 307 B
20-07-2010 22:37:08.526437 4.804956 200 192.168.2.104:59088 195.122.208.167:80 http://www.devnull.cz/elona/ text/html, 12438 B
20-07-2010 22:37:13.331911 27.948067 200 192.168.2.104:59088 195.122.208.167:80 http://www.devnull.cz/elona/P1500.gif image/gif, 19758 B
20-07-2010 22:37:12.30125 31.169488 200 192.168.2.104:59090 195.122.208.167:80 http://www.devnull.cz/elona/P1489.gif image/gif, 18717 B
20-07-2010 22:37:12.72186 42.917346 200 192.168.2.104:59092 195.122.208.167:80 http://www.devnull.cz/elona/P1492.gif image/gif, 20966 B
20-07-2010 22:37:12.50867 44.352634 200 192.168.2.104:59091 195.122.208.167:80 http://www.devnull.cz/elona/P1491.gif image/gif, 17201 B
20-07-2010 22:37:12.93578 62.694313 200 192.168.2.104:59093 195.122.208.167:80 http://www.devnull.cz/elona/P1494.gif image/gif, 22074 B
20-07-2010 22:37:56.593248 23.477284 200 192.168.2.104:59095 195.122.208.167:80 http://www.devnull.cz/elona/P1503.gif image/gif, 19166 B
20-07-2010 22:37:12.114918 72.921036 200 192.168.2.104:59094 195.122.208.167:80 http://www.devnull.cz/elona/P1497.gif image/gif, 19922 B
20-07-2010 22:37:56.614422 28.941523 200 192.168.2.104:59096 195.122.208.167:80 http://www.devnull.cz/elona/P1505.gif image/gif, 21145 B
Grafový modul
ARP/RARP modul
time type source haddress dev company source paddr target haddress dev company target paddr
16:34:30.66 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 196.168.48.1 00:00:00:00:00:00 196.168.48.2
16:34:30.79 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 192.168.183.1 00:00:00:00:00:00 192.168.183.2
16:34:31.65 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 196.168.48.1 00:00:00:00:00:00 196.168.48.2
16:34:31.74 ARP RESP 00:4f:62:0c:54:e4 196.168.48.2 00:60:b3:2a:47:5e Z-COM, INC. 196.168.48.1
16:34:31.79 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 192.168.183.1 00:00:00:00:00:00 192.168.183.2
16:34:32.79 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 192.168.183.1 00:00:00:00:00:00 192.168.183.2
16:34:32.86 ARP RESP 00:0e:2e:34:33:8e Edimax Technol. 192.168.183.2 00:60:b3:2a:47:5e Z-COM, INC. 192.168.183.1
16:34:32.99 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 192.168.157.1 00:00:00:00:00:00 192.168.157.2
16:34:33.11 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 193.168.106.1 00:00:00:00:00:00 193.168.106.2
16:34:33.17 ARP RESP 00:12:0e:34:7c:4c AboCom 193.168.106.2 00:60:b3:2a:47:5e Z-COM, INC. 193.168.106.1
16:34:33.99 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 192.168.157.1 00:00:00:00:00:00 192.168.157.2
16:34:34.96 ARP REQ 00:12:0e:34:7c:4c AboCom 193.168.106.2 00:00:00:00:00:00 193.168.106.1
16:34:34.96 ARP RESP 00:60:b3:2a:47:5e Z-COM, INC. 193.168.106.1 00:12:0e:34:7c:4c AboCom 193.168.106.2
16:34:34.99 ARP REQ 00:60:b3:2a:47:5e Z-COM, INC. 192.168.157.1 00:00:00:00:00:00 192.168.157.2
16:34:35.20 ARP RESP 00:4f:62:07:e4:df 192.168.157.2 00:60:b3:2a:47:5e Z-COM, INC. 192.168.157.1
DNS modul
DNS TCP query: 0.011897 0 1 12 7 8 (- - RD RA)
Q: AS ANY IN
R: answer AS MX IN 21174 (867 cmh.relay.gdns.net)
R: answer AS MX IN 21174 (868 dca.relay.gdns.net)
R: answer AS SOA IN 21174 (dca.tld.gdns.net, hostmaster.gdns.net.AS, 60343, 10800, 1800, 604800, 21600)
R: answer AS RRSIG IN 85974 (47 ass 1 86400 41248 <root> YYhX3/...GFpaw=)
R: answer AS NSEC IN 85974
R: answer AS NS IN 21174 (tld4.ultradns.org)
R: answer AS NS IN 21174 (tld2.ultradns.net)
R: answer AS NS IN 21174 (tld6.ultradns.co.uk)
R: answer AS NS IN 21174 (tld5.ultradns.info)
R: answer AS NS IN 21174 (tld3.ultradns.org)
R: answer AS NS IN 21174 (dca.tld.gdns.net)
R: answer AS NS IN 21174 (tld1.ultradns.net)
R: authority AS NS IN 21174 (tld2.ultradns.net)
R: authority AS NS IN 21174 (tld4.ultradns.org)
R: authority AS NS IN 21174 (dca.tld.gdns.net)
R: authority AS NS IN 21174 (tld3.ultradns.org)
R: authority AS NS IN 21174 (tld1.ultradns.net)
R: authority AS NS IN 21174 (tld6.ultradns.co.uk)
R: authority AS NS IN 21174 (tld5.ultradns.info)
R: additional dca.tld.gdns.net A IN 13251 (198.65.143.254)
R: additional tld1.ultradns.net A IN 34028 (204.74.112.1)
R: additional tld1.ultradns.net AAAA IN 34028 (2001:502:d399::1)
R: additional tld2.ultradns.net A IN 34243 (204.74.113.1)
R: additional tld3.ultradns.org A IN 34243 (199.7.66.1)
R: additional tld4.ultradns.org A IN 34243 (199.7.67.1)
R: additional tld4.ultradns.org AAAA IN 36342 (2001:502:100e::1)
R: additional tld5.ultradns.info A IN 543 (192.100.59.11)