Network Analysis simplified

What is Network Analysis?

Network analysis or protocol analysis is a process performed by network or security professionals of a network in order to get an insight in to network traffic, network services or data flow. The Analysis is performed by capturing or listening the network data. In order to analyze the network captured data you should be a specialist in any packet capturing utility, you should have a deep understanding of TCP/IP 7 layer communication. Familiar with packet flows and packet structure.

How can you make best use of network analysis?

• In Identifying packet loss from a point
• Analyze a network service or application’s bandwidth.
• Analyzing the whole network bandwidth or delays
• Identifying a faulty network device
• Testing of firewall or intrusion detection systems.
• Performing network audits
• Identifying current bandwidth usage of a network or devices.
• Classify and define malicious traffic signatures.
• Logging or capturing of network traffic for forensic evidence.
• Response time evaluation across the network to implement Qos.

Best free network packet analyzers.

1. Wireshark

An open source package has the ability to capture packets from Ethernet ports, PPP and VPN interfaces.

More Info: http://www.wireshark.org/about.html

2.  Ettercap

It is well known tool for Man in the Middle attack. Other than a packet capturing Ettercap is capable of simulating a network attacks such as DHCP hijack, ARP cache poisoning, OS fingerprinting.

More Info: http://ettercap.sourceforge.net/index.php

3. Nmap

Nmap aka Network Mapper is an open source tool used for network auditing, network inventory, determine the   host available on the network, Supports ping sweeps.

More Info: http://nmap.org