Results 1 to 2 of 2

Thread: Passifist is a tool for passive network discovery

  1. #1
    Moderator firebits's Avatar
    Join Date
    Mar 2010

    Lightbulb Passifist is a tool for passive network discovery

    Passifist is a tool for passive network discovery. It could be used for a number of different things, but was mainly written to discover hosts without actively probing a network. The tool analyzes broadcast traffic and has a plugin architecture through which it dissects and reports services found.

    Information like SQL servers or Terminal servers in the network can be determined simply by analyzing SMB broadcasts packets. The TFTP plugin can identify broadcasting Cisco routers and the IPX plugin dissects IPX-SAP traffic.

    Passifist has been tested on various Linux distributions, on FreeBSD, OpenBSD and on Sun Solaris. It may or may not run on any other libpcap-aware platform.
    The inital version has support for the following protocols/plugins:

    CDP – Cisco Discovery Protocol
    CIM – Compaq Insight Manager
    HSRP – Hot Standby Routing Protocol
    IPX – The IPX protocol
    NETOP – Netop Remote Control
    SMB – SMB and Netbios
    TFTP – Trivial File Transfer Protocol
    MSOFFXMAC – Microsoft Office X for Macintosh
    The results can be stored using the following storage providers:
    TXT – Text file
    ADVTXT – A separate logfile is created for each protocol
    MSSQL – MS Sql Server RDBMS
    GENSQL – Generic SQL script provider

    This is yet another tool written in my sparetime where focus has been on functionality rather than on security.

    That said please let me know of any security related conditions or other bugs you find in the code.


    1.0.0 -> 1.0.1 fixes problem building pcap filter
    1.0.1 -> 1.0.4 numerous bugfixes
    1.0.4 -> 1.0.6 numerous bugfixes and improvements
    1.0.6 -> 1.0.8 updated mssql code. Added Office X dissesector

    Download passifist_src_1.0.8.tgz

  2. #2
    Just burned his ISO
    Join Date
    Jan 2011

    Default Re: Passifist is a tool for passive network discovery

    Guys! Who did use this tool?! Is it good to use to analyze the network?!

    I am interested in the issue that will help to extract some data from MySQL databases!

Similar Threads

  1. broken backtrack-discovery, -enumeration, -network
    By reecx in forum OLD BackTrack 4 Bugs and Fixes
    Replies: 5
    Last Post: 12-24-2009, 07:09 PM
  2. best tool for cracking wpa network
    By mia_tech in forum OLD Newbie Area
    Replies: 13
    Last Post: 01-05-2009, 07:21 AM
  3. Passive tap?
    By Dissident85 in forum OLD General IT Discussion
    Replies: 39
    Last Post: 10-14-2008, 11:42 PM
  4. Make a Passive Network Tap
    By imported_BaconZombie in forum OLD General IT Discussion
    Replies: 7
    Last Post: 09-17-2008, 09:55 AM
  5. Tool request: NSAT (network security analysis tool)
    By williamc in forum OLD BT3beta General
    Replies: 10
    Last Post: 06-03-2008, 04:33 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts