Read the Original Article at http://www.informationweek.com/news/showArticle.jhtml?articleID=208808139
LONDON -- The Honeynet Project, a non-profit security research and development organization, joint effort with the UK Honeynet Project today announced the release of Honeysnap 1.0.1. Honeysnap is the first in a line of analysis tools being designed to answer the Who? and Why? of network attacks.
Typical internet security analysis tools answer the What, How, and When? of network attacks, the Honeynet Projects Honeysnap tool is the first to moving organizations towards completing the resulting questions of Who? and Why? of network attacks.
Honeysnap is a command line tool for parsing single or multiple packet capture data and producing a first-cut analysis report that identifies significant events within the captured in the network attack. Honeysnap provides security analysts with a prepared menu of high value network activity, enabling manual forensic analysis and saving significant incident investigation time. Honeysnap is highly suitable for batch mode operation and automation via the security analysts choice of operating systems.