From c21b347549d13f0120896fcc9e855d0de0e9bec1 Mon Sep 17 00:00:00 2001 From: Doug Burks Date: Sat, 29 Aug 2020 04:46:00 -0400 Subject: [PATCH] Update README --- files/analyst/README | 130 +++++++++++++++++++++---------------------- 1 file changed, 64 insertions(+), 66 deletions(-) diff --git a/files/analyst/README b/files/analyst/README index 9bb61a3c0..ce5a4f202 100644 --- a/files/analyst/README +++ b/files/analyst/README @@ -1,81 +1,79 @@ -The following tools are available on the analyst workstation. +The following GUI tools are available on the analyst workstation: + +chromium + url: https://www.chromium.org/Home + To run chromium, click Applications > Internet > Chromium Web Browser + +Wireshark + url: https://www.wireshark.org/ + To run Wireshark, click Applications > Internet > Wireshark Network Analyzer NetworkMiner url: https://www.netresec.com - Running NetworkMiner: Open terminal and run: networkminer + To run NetworkMiner, open a terminal and type: networkminer -Wireshark - url: https://www.wireshark.org/ - Running Wireshark: Applications > Internet > Wireshark Network Analyzer - -dnsiff - url: https://www.monkey.org/~dugsong/dsniff/ - Running dsniff: Open terminal and run: dsniff -h - -hping3 - url: http://www.hping.org/hping3.html - Running hping3: Open terminal and run: hping3 -h - -netsed - url: http://silicone.homelinux.org/projects/netsed/ - Running netsed: Open terminal and run: netsed -h - -ngrep - url: https://github.com/jpr5/ngrep - Running ngrep: Open terminal and run: ngrep -h - -scapy - url: http://www.secdev.org/projects/scapy/ - Running scapy: Open terminal and run: scapy - -ssldump - url: http://www.rtfm.com/ssldump/ - Running ssldump: Open terminal and run: ssldump -h - -tcpdump - url: http://www.tcpdump.org - Running tcpdump: Open terminal and run: tcpdump -h - -tcpflow - url: https://github.com/simsong/tcpflow - Running tcpflow: Open terminal and run: tcpflow -h - -tcpxtract - url: http://tcpxtract.sourceforge.net/ - Running tcpxtract: Open terminal and run: tcpxtract -h - -whois - url: http://www.linux.it/~md/software/ - Running whois: Open terminal and run: whois -h - -foremost - url: http://foremost.sourceforge.net - Running foremost: Open terminal and run: foremost -h - -tcpstat - url: https://frenchfries.net/paul/tcpstat/ - Running tcpstat: Open terminal and run: tcpstat -h - -tcptrace - url: http://www.tcptrace.org - Running tcptract: Open terminal and run: tcptrace -h - -sslsplit - url: https://github.com/droe/sslsplit - Running sslsplit: Open terminal and run: sslsplit -h +The following CLI tools are available on the analyst workstation: bit-twist url: http://bittwist.sourceforge.net - Running bit-twist: Open terminal and run: bittwist -h + To run bit-twist, open a terminal and type: bittwist -h chaosreader url: http://chaosreader.sourceforge.net - Running chaosreader: Open terminal and run: perl /usr/bin/chaosreader -h + To run chaosreader, open a terminal and type: chaosreader -h -Google Chrome - url: https://www.google.com/chrome/ - Running Google Chrome: Applications > Internet > Google Chrome +dnsiff + url: https://www.monkey.org/~dugsong/dsniff/ + To run dsniff, open a terminal and type: dsniff -h +foremost + url: http://foremost.sourceforge.net + To run foremost, open a terminal and type: foremost -h + +hping3 + url: http://www.hping.org/hping3.html + To run hping3, open a terminal and type: hping3 -h +netsed + url: http://silicone.homelinux.org/projects/netsed/ + To run netsed, open a terminal and type: netsed -h +ngrep + url: https://github.com/jpr5/ngrep + To run ngrep, open a terminal and type: ngrep -h +scapy + url: http://www.secdev.org/projects/scapy/ + To run scapy, open a terminal and type: scapy + +ssldump + url: http://www.rtfm.com/ssldump/ + To run ssldump, open a terminal and type: ssldump -h + +sslsplit + url: https://github.com/droe/sslsplit + To run sslsplit, open a terminal and type: sslsplit -h + +tcpdump + url: http://www.tcpdump.org + To run tcpdump, open a terminal and type: tcpdump -h + +tcpflow + url: https://github.com/simsong/tcpflow + To run tcpflow, open a terminal and type: tcpflow -h + +tcpstat + url: https://frenchfries.net/paul/tcpstat/ + To run tcpstat, open a terminal and type: tcpstat -h + +tcptrace + url: http://www.tcptrace.org + To run tcptrace, open a terminal and type: tcptrace -h + +tcpxtract + url: http://tcpxtract.sourceforge.net/ + To run tcpxtract, open a terminal and type: tcpxtract -h + +whois + url: http://www.linux.it/~md/software/ + To run whois, open a terminal and type: whois -h