Penetration Testing mailing list archives

RE: How to detect the IPs of users who are using IM and P2P programs

From: Barrie Dempster <barrie () reboot-robot net>
Date: Tue, 29 Nov 2005 09:34:21 +0000

On Tue, 2005-11-29 at 08:19 +0200, Maher Odeh wrote:

you can use ethereal to sniff the data
And then to analyze it,


Or you could use an IDS (such as SNORT) with signatures for the
protocols in use, removing some of the manual work from the sniffing.


-- 
With Regards..
Barrie Dempster (zeedo) - Fortiter et Strenue

"He who hingeth aboot, geteth hee-haw" Victor - Still Game

blog:  http://reboot-robot.net
sites: http://www.bsrf.org.uk - http://www.security-forums.com
ca:    https://www.cacert.org/index.php?id=3

Attachment: smime.p7s
Description:

Current thread:

How to detect the IPs of users who are using IM and P2P programs نبيل الزهراني (Nov 28)
- Re: How to detect the IPs of users who are using IM and P2P programs Bhavatosh (Nov 29)
- Re: How to detect the IPs of users who are using IM and P2P programs Joachim Schipper (Nov 29)
- Re: How to detect the IPs of users who are using IM and P2P programs jim (Nov 29)
- Re: How to detect the IPs of users who are using IM and P2P programs Robert BARABAS (Nov 29)
- RE: How to detect the IPs of users who are using IM and P2P programs Alex Moen (Nov 29)
- Re: How to detect the IPs of users who are using IM and P2P programs Murali Raju (Nov 29)
- Re: How to detect the IPs of users who are using IM and P2P programs John Lampe (Nov 29)
- <Possible follow-ups>
- RE: How to detect the IPs of users who are using IM and P2P programs Maher Odeh (Nov 29)
  - RE: How to detect the IPs of users who are using IM and P2P programs Barrie Dempster (Nov 29)
  - Re: How to detect the IPs of users who are using IM and P2P programs Mark Blaszczyk (Nov 29)
- RE: How to detect the IPs of users who are using IM and P2P programs Haseeb Chaudhary (Nov 29)