|
Morning Glory Technologies
|
Active IP
Sensor v1.7.4 Release Notes
Active IP
Sensor Enterprise v2.0.0. BETA
Key
Benefits
o Active IP
Executables and Ports Sensor
o Active
IP Executables and Ports Run Time Module Queries
o
Active IP Executables and Ports History Recordings
o
Active IP Executables and Ports History Sharing
o Active IP Executables and Ports Unattended Data Collection
Softpedia guarantees that Active IP
Sensor is
100% CLEAN, which means it does not contain
any form of malware, including but not limited to: spyware, viruses, Trojans
and backdoors.
Active IP Executables and Ports Sensor
Active
IP Sensor
lets you watch all incoming and outgoing IP port connections in flight. Active
IP Sensor listens for local IP port connections as they are formed,
progress and retire. Active IP Sensor updates the IP protocol type,
connected port number; its current status, the local application that has bound
to the port and the remote peer's name. You can modify the Interval between
sample updates by clicking the Interval button. Enter values in 1/1000
of a second.
Active
IP and Ports Run Time Module Queries
Active IP Sensor displays ports in one of two
modes: Active or Bound. Select the display mode
from the toolbar or Monitor menu item.
In Active Mode, each local executable that has established the port
connection and all the modules that make up the executable are displayed:
Active IP Sensor Active Executables
Display Hierarchy
There could be several
executable names connected to the same remote address but whose actual
executable and component modules are different. In the above screenshot,
executable putty.exe has two local ports opened to remote
address 192.168.1.100 port 22 via PIDs 3116
and 3984. Clicking on a PID reveals an executables property and
in this case shows that putty.exe is two different executables sharing
the same name (one in Program Files and the other on the user`s Desktop).
Active IP Sensor groups executables by PID under the foreign address for each connection in the display
for this reason:
Clicking on a Module Name
under a PID
shows the modules properties:
In Bound
Mode, each local port that has been bound by a local process is shown.
These may not necessarily contain a connected or active remote peer and only
show that the port is not available for any other process to bind to. The bound
local port name is shown and if there is a connected peer, its foreign address
is displayed.
Active IP Sensor Bound Ports
Display Hierarchy
Active IP
Executables and Ports Run Time Module Queries
Active
IP Sensor lets you issue standard network queries using the foreign addresses
currently connected to a local IP port:
Click on a foreign address and select one of the standard network queries
to send it.
If
the foreign address supports HTTP request, Active
IP Sensor can start a HTML session on the foreign host using Active IP Sensors
built-in embedded browser:
Active IP Sensor streams
results from queries and other commands into a web page it dynamically
refreshes in its execution folder called ActiveIPSensorLog.html. Remote clients
can use a web browser to monitor a remote Active IP Sensors status using this page:
Remote Active
IP Sensors can share their IP port
activity using Active IP Executables and Ports History File Recordings:
Active IP
Executables and Ports History Recordings
Active
IP Sensor
lets you record the data it collects. Active IP Executables and Ports History
Recordings operate in one of two modes: Snapshots and History.
Recording modes are selected from the dropdown menu next to the Record toolbar
button or by clicking the Recording
Mode Toggle on the Status
Panel shown in the lower right
Snapshot recordings overwrite the
previous sample with the current sample. This results in a file that is always
one sample in size.
History recordings append the current
sample to the previous sample creating files that grow in size with each
sample.
Active IP Sensor Recording samples in History (INS) mode. Use this mode when several Active IP Sensors are recording into a single History file
To begin recording, Click the
Record button and select a file to save the recording in. To stop recording,
click the Stop button. Active
IP Sensor records samples only
if they have changed from the previous sample. A History mode
recording contains a chronology of changing samples with no duplicates between
adjacent samples. History
mode recordings (INS) should be used if many remote clients
are recording samples into a single
history file.
Remote Active IP Sensor Sharing
The most useful attribute of Active
IP Sensor is the ability to share Active IP port activity with remote
clients in real time. Many Active IP Sensors could share a single
history file. Several Active
IP Sensors could be running in different modes on different remote
servers. All of their outputs could be recorded into a single, common history
file and displayed on a single desktop or many using Active IP Sensor Sharing:
Listening for samples from an Active
IP Sensor running on a remote node. Several Active
IP Sensors could simultaneously Record or Listen
to this single History File each recording different run modes and IP
port activity. A History File listener could even be a remote Log Dispatcher filter!
To replay an Active IP
Sensor History or listen to a remote Active IP Sensor, click the Open
button and select a history file. When Active IP Sensor first opens a history
file it positions it to the beginning of the file and opens each record in
sequence. While in this mode, press the Listen button to scroll the file
to the end and begin listening for any new data that may be written there by a
running Active IP Sensor. Once a history file reaches the end, Active IP Sensor
begins listening at the end for new data automatically
Active IP Executables and Ports Unattended
Data Collection
Active IP Sensor accepts a command
line parameter that may be supplied while starting Active IP Sensor in a batch script
or a Scheduled Windows Task .
When Active IP Sensor receives
a command line parameter it assumes it specifies a fully qualified path to a
file to record Active IP Sensor History
files in. While in this mode, Active IP Sensor records data in History mode (see above). Additionally,
Active IP Sensor operates invisibly without its user interface displayed. Active IP Sensor still
appears in the Windows Task List
however. Active IP Sensor sends any error messages to its internal log (ActiveIPSensorLog.html) as well as the Windows Event Log while running without
its user interface displayed:
Site Customizations
If you
like Active IP Sensor, purchase customized Active IP Sensor
sources for your site and tailor it to perform unique
tasks for you organization. Active IP Sensor Site Customizations
come with developer support to help facilitate changing Active IP Sensor
properties to match your specific needs and a full license to distribute and
use your customized Active
IP Sensor binaries throughout all the nodes in your network. Active IP Sensors
developer (Jeff Martin) is
highly capable in many areas and is available for further assignment. Contact
him at jeffreymartinj@yahoo.com
for
more details.
We offer a broad range of
Software Engineering consulting services from complete design/build solutions
to integration with existing sustaining efforts. We focus on mission critical,
real time systems. Listed below are a few of the organizations where
we've recently created and implemented solutions for production applications:
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Our Environment
We have complete development
environments encompassing all popular operating systems, databases and
development platforms including:
|
Operating Environments: o Windows 2003 Server o Windows XP Professional < |