Penetration Testing mailing list archives
Re: Snarf files from a sniff dump
From: Neil <neil () voidfx net>
Date: Sat, 25 Feb 2006 23:05:36 +0530
Shenk, Jerry A wrote:
Ethereal will do that. If you right-click on a packet, you can "follow TCP stream". Depending what your goal is, that may be enough. If it isa text document, you'll clearly see the text.If it's not a text document, you will probably need to work a little harder. I've never done what you're talking about for a printer file but I'm guessing that you're gonna see pretty much a raw printer data stream that can simply be sent back to the printer to get a printed output. -----Original Message-----From: 4secure () web de [mailto:4secure () web de] Sent: Friday, February 24, 2006 8:19 AMTo: pen-test () securityfocus com Subject: Snarf files from a sniff dump Hi List Members! I am looking for a tool to snarf files (e.g. Word documents etc.) from a sniff dump (e.g. ethereal or tcpdump) in an M$ Windows LAN (SMB) or between a client and a printer (PS, PCL etc.). Does someone know such tools (I know Dsniff, but it is not exactly what I am looking for)? Thanks! Istvan
You might try what was suggested above. A lot will depend on how the client talks to the printer. I know with HPs, you can just telnet right into port 9100, type whatever you want, and when you close the connection, everything you typed will just spew out printed. If the connection is something like that, then plaintext snarfing plus some editting might get you the document.
-Neil ------------------------------------------------------------------------------Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- Snarf files from a sniff dump 4secure (Feb 24)
- Re: Snarf files from a sniff dump Renaud Deraison (Feb 26)
- Re: Snarf files from a sniff dump Nico Golde (Feb 26)
- <Possible follow-ups>
- RE: Snarf files from a sniff dump Shenk, Jerry A (Feb 25)
- RE: Snarf files from a sniff dump nodialtone (Feb 26)
- Re: Snarf files from a sniff dump Neil (Feb 26)
- Re: Snarf files from a sniff dump freed0m [hacktimes.com] (Feb 26)
- Message not available
- RE: Snarf files from a sniff dump Jim Morgan (Feb 26)
- Re: Snarf files from a sniff dump Nagareshwar Talekar (Feb 27)
- RE: Snarf files from a sniff dump 4secure (Feb 26)
- RE: Snarf files from a sniff dump Craig Wright (Feb 27)