Sguil: The Analyst Console for Network Security Monitoring (NSM)

August 27, 2010

Sguil (pronounced sgweel) is built by network security analysts for network security analysts. Sguil’s main component is an intuitive GUI that provides access to realtime events, session data, and raw packet captures. Sguil facilitates the practice of Network Security Monitoring and event driven analysis. The Sguil client is written in tcl/tk and can be run on any operating system that supports tcl/tk (including Linux, *BSD, Solaris, MacOS, and Win32).

Sguil is included in the Hex Live CD from raw packet team. You just have to launch Sguil from the desktop by right clicking and choose Sguil as your launch application. You will be prompted with a username and password..Key in your username and password and get connected to the Sguil server.

Screenshot for the main window of Sguil:-

Well , my advice ,.. try Sguil and see what it can do. It’s a cool Network Monitoring System. Download the latest version from Sourceforge.com .

p/s: A new Ubuntu called Maverick Meercat version 10.10 had released. It’s still in Alpha stage. Try it!…Check this website:-



Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: