When you click on links to various merchants on this site and make a purchase, this can result in this site earning a commission. Affiliate programs and affiliations include, but are not limited to, the eBay Partner Network.
Knoppix-NSM– a modified version of the Knoppix LiveCD, focused on network security monitoring.
Knoppix-NSM is not a preventative tool and does not focus on vulnerabilities.
It contains many very useful tools for detective network analysis, such as:
– Sguil to detect this network activity
– Basic Analysis and Security Engine (BASE) NSM for network monitoring and showing the port scan as well
– the following scans can by ran: FIN, XMAS, NULL, Operational
– Ntop to view statistical network data using – this can alert you to abnormal network such as 95% of all traffic being UDP packets.
Documentation