OmniPeek

Omnipeek is a packet analyzer software tool from Savvius, a LiveAction company,[3] for network troubleshooting and protocol analysis. It supports an application programming interface (API) for plugins.

Omnipeek
Developer(s)Savvius
Stable release
11.1 [1] / November 7, 2017 (2017-11-07)[2]
Operating systemWindows
TypePacket analyzer
Websitewww.savvius.com

History

Savvius (formerly WildPackets) was founded in 1990 as The AG Group by Mahboud Zabetian and Tim McCreery. In 2000 the company changed its name to WildPackets to address the popular market it had developed for its products. The first product by the company was written for the Macintosh and was called EtherPeek. It was the first affordable software-only protocol analyzer for Ethernet networks. It was later ported to Microsoft Windows, which was released in 1997. Earlier, LocalPeek and TokenPeek were developed for LocalTalk and Token Ring networks respectively. In 2001, AiroPeek was released, which added support for wireless IEEE 802.11 (marketed with the Wi-Fi brand) networks. In 2003, the OmniEngine Distributed Capture Engine was released as software, and as a hardware network recorder appliance.

In the early morning of July 15, 2002, WildPackets' building in Walnut Creek, California burnt to the ground including everything in it. However, no one was hurt and the employees regrouped at a new location and the company survived the fire.[4]

Mid-April 2015, the company changed its name from WildPackets to Savvius and broadened its focus to include network security.[5]

In June 2018, Savvius was acquired by LiveAction[6], a company that provides network performance management, visualization and analytics software.

Acquisitions

Savvius acquired Net3 Group in November 2000. Their product, NetSense, an expert system for network troubleshooting, was converted initially converted into a plug-in and then later fully integrated into a new version of the product called EtherPeekNX.[7]

Savvius acquired Optimized Engineering Corporation in 2001. Optimized network analysis instructors, training courses and certifications were added to Savvius' services.[8]

Extensibility

Omnipeek has APIs on the front-end for automation, on the back-end for analysis, as well as other mechanisms to extend and enhance the program.[9]

There are 40 plug-ins available for the Omnipeek Platform. These plug-ins range from logging extensions to full-blown applications that are hosted by OmniPeek.

Remote Adapters: provide a means to capture packets and stats. There are remote adapters to capture from RMON, NetFlow, SFlow, Cisco AP's, Aruba AP's, and Linux boxes. Adapters are available to aggregate packets from multiple network segments and wireless channels at the same time.

The most notable decoders are the protospecs and decoder files, which are interpreted text files that can be extended by the user to enhance the display and analysis of existing protocols, and add knowledge of completely new protocols, without releasing new versions of the application.[10]

The plugin Wizards for the Omnipeek Console and the OmniEngine are Microsoft Visual Studio Project Templates that generate working plug-ins. When the wizard is run, a dialog appears providing options for types of functionality that sample code will be generated for. When the wizard is complete, the user is left with a working plugin with entry points for adding application logic. These plug-in wizards enable the development of extensions to Omnipeek.

The MyPeek Community Portal is a website dedicated to the extension of Omnipeek. It provides plug-ins, scripts, adapters, tools, and various levels of support for the plug-ins posted there, and expertise for those interested in extending Omnipeek themselves.[11]

PlaceMap: is a freely available standalone Google Maps Packet sniffer application for Windows that captures network traffic and maps nodes to the Google Map. PlaceMap is a notable example of extensibility in that it uses exactly the same Google Map plugin that is also available for the Omnipeek, and it uses the peek driver API to capture packets.[12]

Example Plugins

  • Google Map Plugin - map nodes to a Google Map[13]
  • SQLFilter Plugin - save and query packets from a database
  • PeekPlayer Plugin - send packet an adapter or a capture window
  • PowerBar Plugin - write scripts that process packets
  • Decoder Plugin - decode packets
  • WatchMe Plugin - display web sites in real-time from URLs
  • Browser Plugin - construct and display web pages from packets
  • IM Plugin - display instant message screen names and chat
  • WebStats Plugin - collect and report web statistics
  • Remote TCPDump Adapter Plugin - stream packets from any machine with SSH and tcpdump
  • Cisco Remote Adapter Plugin - stream packets from Cisco Access Points
  • Aruba Remote Adapter Plugin - stream packets from Aruba Networks Air Monitors
gollark: Also, dependency management is pure evil.
gollark: Lua does have libraries, but they're not really as convenient as the quadrillion built-in Python ones. Though frankly many of the builtin ones are awful and you need external ones half the time.
gollark: I could probably replace much of my Python usage with Lua if there was a good set of libraries I could use for stuff like HTTP, filesystem access, Unicode string handling, string manipulation generally, and all the other random tasks I need.
gollark: It was implied heavily.
gollark: <@151391317740486657> Popular != good.

References

This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.