the analyzed sniffer/IDS in the table. If you make some tests, please send to us the data, we are glad to link it.
| Sniffer/IDS | proof/screenshot | Software page |
| WireShark (1.0.0) |
 Wireshark bad reassembly of an IRC traffic |
http://www.wireshark.org |
| Xplico (DEFT 4) |
 Google images scrambled |
http://www.xplico.org |
| unsniff (setup_unsniff_R_1_0_1_1234.msi) | no proof available | unsniff |
| NetIntercept | no proof available | NetIntercept |
| networkminer | no proof available | networkminer |
| justsniffer | no proof available | justsniffer |
| ... | ... | ... |
Note: the images uploaded sometime involve web traffic. Is not scrambled but WEB, begin semi syncronous (a GET request cause a GET answer, a POST too) and the most of the flow is downloaded from the server, cause that the client has very few possible hacks to operate for desync che reassembly. Is possibile anyway, but covering the data (the best hack, I belive) with the fake coverage is impossible.
Note 2: the images and the table before are derived from tests made with Sniffjoke 0.3, the 0.4 is light year far ahead, anyway we have not time to made impact analysis in IDS and sniffer, we are expecting external support!