By now you are probably aware that Message Analyzer is the replacement to good ol' Network Monitor.
But if you are like me and slow to change your ways, then you may not yet have made Message Analyzer your primary tool for capture gathering!
That’s why this week's tips are geared at giving a MA test drive!
As you might guess from the name, Message Analyzer is much more than a network sniffer or packet tracing tool. Key capabilities include:
- Integrated "live" event and message capture at various system levels and endpoints
- Parsing and validation of protocol messages and sequences
- Automatic parsing of event messages described by ETW manifests
- Summarized grid display – top level is “operations”, (requests matched with responses)
- User controlled "on the fly" grouping by message attributes
- Ability to browse for logs of different types (.cap, .etl, .txt) and import them together
- Automatic re-assembly and ability to render payloads
- Ability to import text logs, parsing them into key element/value pairs
- Support for “Trace Scenarios” (one or more message providers, filters, and views)
In the next tip we will look at steps required to grab a simple network capture.
What are you waiting for? Go ahead and kick the tires!
For more information check out the following Message Analyzer Blog link.