Wireshark-users: Re: [Wireshark-users] Good tools for pcap summary info, etc.?

From: Jim Balo <jimbalo22@xxxxxxxxx>
Date: Thu, 25 Sep 2008 12:11:08 -0700 (PDT)
Hi Jaap,
 
I checked out their demo and I am pretty impressed!  Not cheap, but probably worth it.
 
How long have you been using this tool?  Are you happy with it?  Any complaints?
 
Thanks,
JB

--- On Thu, 9/25/08, Jaap Keuter <jaap.keuter@xxxxxxxxx> wrote:
From: Jaap Keuter <jaap.keuter@xxxxxxxxx>
Subject: Re: [Wireshark-users] Good tools for pcap summary info, etc.?
To: jimbalo22@xxxxxxxxx, "Community support list for Wireshark" <wireshark-users@xxxxxxxxxxxxx>
Date: Thursday, September 25, 2008, 11:48 AM

Hi,

You may want to have a look at Pilot, from CACE tech, the Wireshark supporters.

Thanx,
Jaap

[Note: I'm not in any way connected to CACE, other than working on
Wireshark]

Jim Balo wrote:
> Hello,
>  
> I am capturing all traffic leaving our network in order to determine 
> what traffic should be allowed and what traffic should be blocked (by 
> egress filtering).  Last time I did this, it was quite painful and took 
> a long time. 
>  
> I know there are some built in tools in Wireshark for displaying 
> summaries of pcap traffic, but I am interested in finding out what other 
> tools are out there for anylyzing big pcap files and displaying 
> summaries / statistics in various ways (like end-point communications w/ 
> easy access to whois and/or other details for each node). 
>  
> Any help on this would be great!
>  
> Thanks,
> JB
>