Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

wathcing programs' port access 1

Status
Not open for further replies.
realtree

realtree

Technical User
Aug 5, 2003
53
CA
How would be able to see which programs are attempting to access which ports and by what protocol etc. Like ZoneAlarm does; when a program tries, it asks you how you want to deal with it. This feature must be available as a standalone package- i hope.

In short, I'm looking for a more verbose real-time portscan/netstat type thing.
 
Sort by date Sort by votes
and btw, I searched google about it for like an hour. Nothing from my perspective. (too much consumerism?)
 
Upvote 0 Downvote
Try searching for packet sniffer. You will even find some results in this forum. Many may give you more information than what you're after though.
 
Upvote 0 Downvote
> when a program tries, it asks you how you want to deal with it
This is a firewall type application (like ZoneAlarm). Packets of information are actively monitored and action is taken according to whatever pre-defined rules you set up.

> In short, I'm looking for a more verbose real-time portscan/netstat type thing
This is passive - it just watches what is happening, and makes no attempt to change what it going on.
An example of such a tool is Ethereal -
 
Upvote 0 Downvote
These are Win32API calls that ZoneAlarm uses. You register to receive the messages that are bound to/from a network interface. I believe that you want to look at the SetWindowsHookEx method. It is the same method called by keyboard capture programs.

It should be relatively easy to write the hook portion of the program. I worked on a keyboard sniffer that took a couple of hours to work out the bugs on. Visual Studio .NET makes this a trivial process. But you need to know which messages you should be capturing. I've not looked into the network messages, only the keyboard.


pansophic
 
Upvote 0 Downvote
Yes, I think Ethereal is the one that I was watching someone play with the other day, I didn't think it could do that kind of thing. I'll try it out when i get home!

and pansophic: that sounds like a great solution to try. I like it... if only i knew VB or something I could use that with. I 'm only learning pascal right now, but I'm taking VB come September.
 
Upvote 0 Downvote
You can implement the Win32API calls in Pascal as well. Take a look at Source Forge for an application called Async Pro. It is an ActiveX object that is written in Delphi and makes extensive use of the Win32API and TAPI to provide serial port access.


pansophic
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
692
XLNTech1
XLNTech1
Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
1K
Shmid
Shmid
Impersonator
  • Locked
  • Question
UDP Hacking port 53
Replies
1
Views
356
RodneyMcSnow
RodneyMcSnow
gbayi_omo
  • Locked
  • Question
Cisco ASA 5505 not allowing access to highest security zone
Replies
0
Views
220
gbayi_omo
gbayi_omo
RMurr34
  • Locked
  • Question
ASA Config - Open port 3389 for all IPs
Replies
1
Views
321
iggsterman
iggsterman

Part and Inventory Search

Sponsor

Back
Top