OmniPeek

From Wikipedia, the free encyclopedia

This article or section includes a list of references or external links, but its sources remain unclear because it lacks in-text citations.
You can improve this article by introducing more precise citations.

OmniPeek is a packet analysis platform from WildPackets that supports an extensive and well documented plugin API. There are many plugins available for OmniPeek, several of which can be found on the WildPackets Developer Network (WPDN). All of the plugins on the WPDN are free to users with active maintenance contracts, and most of the plugins include the source code.

A screenshot of the software

1 Extensibility
2 Example Plugins
3 References
4 External links

[edit] Extensibility

This article does not cite any references or sources. (April 2008)
Please help improve this article by adding citations to reliable sources. Unverifiable material may be challenged and removed.

OmniPeek has API's on the front-end for automation, API's on the back-end for analysis, as well as numerous other mechanisms to extend and enhance the program.

Decoders: The most notable of these are the protospecs and decoder files, which are interpreted text files that can be extended by the user to enhance the display and analysis of existing protocols, and add knowledge of completely new protocols, without releasing new versions of the application.

Plugin Wizards: The Plugin Wizards for both the OmniPeek Console and the OmniEngine are Microsoft Visual Studio Project Templates that generate working plugins. When the wizard is run, a dialog appears providing options for different types of functionality that sample code will be generated for. When the wizard is complete, the user is left with a working plugin with entry points for adding application logic. These plugin wizards make it extremely easy and quick to develop extensions to OmniPeek.

WPDN: The WildPackets Developer Network is a website dedicated to the extension of OmniPeek. It provides tools for extending OmniPeek, and various levels of support for the many different plugins posted there, and expertise for those interested in extending OmniPeek themselves

AirCrack/AirSnort: On Windows, both Aircrack-ng and AirSnort depend on WildPackets unique wireless drivers to capture traffic that they use to crack WEP and WPA-PSK keys.

PlaceMap: is a freely available standalone Google Maps Packet sniffer application for Windows that captures network traffic and maps nodes to the Google Map. PlaceMap is a notable example of extensibility in that it uses the exact same Google Map plugin that is also available for the OmniPeek, and is uses the peek driver API to capture packets.

[edit] Example Plugins

This article does not cite any references or sources. (April 2008)
Please help improve this article by adding citations to reliable sources. Unverifiable material may be challenged and removed.

Google Map Plugin - Map nodes to a Google Map
SQLFilter Plugin - Save and query packets from a database
PeekPlayer Plugin - Send packet an adapter or a capture window
PowerBar Plugin - Write scripts that process packets
Decoder Plugin - Decode packets
WatchMe Plugin - Display web sites in real-time from URL's
Browser Plugin - Construct and display web pages from packets
IM Plugin - Display instant message screen names and chat
WebStats Plugin - Collect and report web statistics
Remote TCPDump Adapter Plugin - stream packets from any machine with SSH and tcpdump
Cisco Remote Adapter Plugin - stream packets from Cisco Access Points
Aruba Remote Adapter Plugin - stream packets from Aruba Networks Air Monitors