| Tranalyzer2 Boeing Version 0.7.5 is out! |
| Tuesday, 30.1.2018 You can download the new version here! Linux & MAC tested. More support for L2 encapsulations, improved packet mode, core code refactored, fast and more precise IPv4/6 geolabeling in basicFlow(special thx to Lars from UniBW), so slow geoip might be obsolete some day. And because somebody insisted on a telnet plugin, here it is. Have fun! |
| Tranalyzer2 Boeing Version 0.7.4 is out! |
| Monday, 20.11.2017 You can download the new version here! HashAutopilot: Protection against flow hash overflow, T2 finishes its job without complaining. New Protocols such as GENEVE, WCCP, DLT_PP:SERIAL, JUMBO_x, etc. Plugins for radius, lldp, cdp. Better fragmentation hashing. |
| Tranalyzer2 Boeing Version 0.7.1 is out! |
| Friday, 23.6.2017 You can download the new version here! Several encapsulations added, such as ethip, capwap, anything in anything, etc. Improved packet mode, now each plugin can contribute, protocol description column, improved protocol plugins including content downloads, improved SCTP support, better human readability of end report, Improved pdf summary report scripts. New powerful tawk post processing scripts. We constantly fuzzing and testing T2 to make it resilient against all kinds of attacks. |
| New tutorial |
| Tuesday, 9.5.2017 You can download it here: PDF Report Generation from PCAP using t2fm |
| Sneak peak at Tranalyzer new PDF report generation |
| Monday, 6.2.2017 As some of you may be aware, we have been working on improving tawk, our awk wrapper for querying flow files. This makes it really easy to get top N statistics for any features extracted by Tranalyzer. A lot of queries are common to many forensics investigation, such as top src/dst IP and ports, DNS queries or HTTP URLs, etc., so we wrote a script which automatically runs all those queries and generates a PDF report. No need to be a T2 guru to use it, just call the script with your pcap file and wait for your PDF (just a couple of minutes to go from a 5.7G pcap to a PDF report (1m15s on my machine)). Here is a sample report (obfuscated) to give you an idea of what information you'll get. The script should make it into the next release, but if you are interested and would like to test it for yourself, just contact us and we'll send you a working version. Feel free to contact us if you have any feedback, feature requests or questions. |