Author: Vivek Rajagopalan

Vivek Rajagopalan is the a lead developer for Trisul Network Analytics. Prior products were Unsniff Network Analyzer and Unbrowse SNMP. Loves working with packets , very high speed networks, and helping track down the bad guys on the internet.

Announcing Trisul

We are happy to announce a major new open source project called Trisul.

fetch.png

What is Trisul ?

Trisul is a network metering and forensics tool. You can install Trisul on any Linux box and have it look at network traffic in real time or via capture files. It meters the traffic (by host, by protocol, by subnet, etc) and stores the results in a SQL database. Trisul also includes a Ruby on Rails application called Web Trisul that allows you to use a web browser to view data in the form of pretty charts.

Status

Trisul has been in development for a few months now primarily as a remote probe for the upcoming Unsniff 2.0 release. We decided to make it open source once we cleaned up some embarassing bits of code. The entire software is GPLv3.

You can install Trisul right away and do some really useful stuff with it. It is still rough around the edges in terms of documentation and the occasional stability problem.

Get it !

We encourage all network administrators especially those involved in security operations to try out Trisul. 

The Trisul Project Site

Trisul Sourceforge Download Page

 

Cisco SNMP MIB Package updated

The latest Cisco SNMP MIBs from their FTP site is now available as a Unbrowse SNMP MIB Package. This is the easiest way to work with Cisco equipment using SNMP. This monster package consists of 1082 MIB modules and over 70,000 unique objects.

This package can be installed via one click via “Repository -> Import Package”

Download the package from here.

Download Unbrowse SNMP from here.

New build available #1222

A new build of Unbrowse SNMP is now available. Download from here.
This fixes two problems :

1.  When multiple network adapters are present, the SNMPTrap Receiver console may ignore all but the first adapter.  If you were to select say the second or third adapter you may see a message on the status bar which says “No interfaces found”.

2. The logging framework is enhanced. Now, if you enable logging the log file is automatically opened in NOTEPAD. Prior to this you had to hunt down the log file from the Documents And Settings folder area.

Enjoy !