John, Nice list of tools. I'm checking out PacketQ right now.
On Mon, May 27, 2013 at 2:39 PM, John Bond <[email protected]> wrote: > > > > On 27 May 2013 03:53, Tim Parker <[email protected]> wrote: > >> What's the best way to capture and analyze DNS queries and responses on >> my LAN? Are there any good tools out there for this? I can run a full >> capture on the WAN interface, but then what's good for automating the >> extraction of the DNS traffic? >> > > try some of the following options > > dsc[1] for general overview stuff > dns-anomaly[2] For anomaly detection > dnstop[3] for general live overview stuff > packetQ[4] SQL interface to pcap data with builtin dns support (very cool) > > some of the other tools at http://dns.measurement-factory.com/tools/ may > also be usefull > > > [1]https://www.dns-oarc.net/tools/dsc > [2]https://gitweb.labs.nic.cz/?p=dns-anomaly.git;a=summary > [3]http://dns.measurement-factory.com/tools/dnstop/ > [4]https://github.com/dotse/PacketQ > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > -- Jon Molesa [email protected] Aoccdrnig to rscheearch at an Elingsh uinervtisy, it deosn't mttaer in waht oredr the ltteers in a wrod are, the olny iprmoetnt tihng is taht the frist and lsat ltteer are in the rghit pclae. The rset can be a toatl mses and you can sitll raed it wouthit a porbelm. Tihs is bcuseae we do not raed ervey lteter by it slef but the wrod as a wlohe and the biran fguiers it out aynawy. ... so please excuse me for every typo in the email above. Reference: https://github.com/Ettercap/ettercap/blob/master/README
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
