SniffNet Remote Agent to Monitor the Network Adapter on a Remote Host or Hosts #303
Comments
|
As of now, the available adapters are those identified by pcap and are only internal to the machine on which Sniffnet is installed. The idea you mentioned would require the development of the remote agent, if I understood correctly, and this is out of scope at the moment. If you are aware, feel free to link some resource from which I can take inspiration for the modalities of work of remote agents and the transmission of data to the main application. If the process wouldn't break too much the existing code base, I could consider this feature in the long term. |
|
Thanks! Feel free to leave this issue open, but I'll tag it as |
GyulyVGC
added
enhancement
|
I don't think any of these solutions will provide anything more than RX TX counters for each interface. Nagios plugins aren't exporting port and IP src/dst addressing for each flow, it's just a count of how many packets came into and out of each individual network interface. |
|
@GyulyVGC @kenrmayfield https://github.com/evilsocket/opensnitch/wiki/SIEM-integration |
|
Have you thought about making a Agent for Windows and Daemon for Linux so that SniffNet can Sniff |
Hi @kenrmayfield, as I anticipated:
I included this request in the project's roadmap, but it'll be likely one of the last features to be implemented. |
Is there an existing issue for this?
Describe the solution you'd like
Setup a Remote Agent for SniffNet, just like Nagios's Remote Agent to Monitor the Network Adapter on a Remote Host or Hosts.
This would be a Option just like in SniffNet when you Pick which Network Adapter you would like to Monitor Network Traffic.
The Remote Agent would be Installed on Windows/Linux and Send Live Data of Network Traffic Information back to SniffNet.
Is your feature request related to a problem?
No response
The text was updated successfully, but these errors were encountered: