Security Basics mailing list archives
[Fwd: Re: a tool like nestat]
From: Joe White <jwhite () biztekinc net>
Date: Wed, 08 Sep 2004 16:16:07 -0400
Well as netstat is originally a *nix tool, I don't know if you are using win or lin sooo that being said, if you are using *nix the tool you are looking for is lsof (list open files) do a man on it for details on it's use. As for windows, I really don't know, so I'd say try out what Teo said...
-Joe
--- Begin Message --- From: "Teo Gomez" <tgomez () ubiquitelpcs com>
Date: Tue, 7 Sep 2004 13:33:09 -0400
Windows has a tool that is more robust than netstat, it's called Port Reporter - PortRptr. See: http://www.microsoft.com/downloads/details.aspx?FamilyID=69ba779b-bae9-4 243-b9d6-63e62b4bcd2e&displaylang=en Thanks, Teo -----Original Message----- From: Hamish Stanaway [mailto:koremeltdown () hotmail com] Sent: Wednesday, September 01, 2004 5:30 AM To: juanbabi () yahoo com; security-basics () securityfocus com Subject: RE: a tool like nestat Hi there Juan, What version of windows are you using (I presume you are using windows as you refer to netstat)? It is possible to track what application is using what port using the process number, all doable via a standard XP box in DOS. If you are more interested, let me know and I will find the thread (which admittedly is around a year old now) which refers to how to do this. Kindest of regards, Hamish Stanaway, CEO Absolute Web Hosting / -= KoRe WoRkS =- Internet Security Auckland, New Zealand http://www.webhosting.net.nz http://www.buywebhosting.co.nz http://www.koreworks.comFrom: Juan B <juanbabi () yahoo com> To: security-basics () securityfocus com Subject: a tool like nestat Date: Mon, 30 Aug 2004 10:10:02 -0700 (PDT) MIME-Version: 1.0 Received: from outgoing3.securityfocus.com ([205.206.231.27]) by mc1-f10.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Wed, 1 Sep200401:47:39 -0700 Received: from lists.securityfocus.com (lists.securityfocus.com [205.206.231.19])by outgoing3.securityfocus.com (Postfix) with QMQPid E09E9273E4E; Tue, 31 Aug 2004 15:56:30 -0600 (MDT) Received: (qmail 8655 invoked from network); 30 Aug 2004 14:35:57 -0000 X-Message-Info: 6sSXyD95QpU39lmjQMBSF8QY3/fWlJmM Mailing-List: contact security-basics-help () securityfocus com; run byezmlmPrecedence: bulk List-Id: <security-basics.list-id.securityfocus.com> List-Post: <mailto:security-basics () securityfocus com> List-Help: <mailto:security-basics-help () securityfocus com> List-Unsubscribe:<mailto:security-basics-unsubscribe () securityfocus com>List-Subscribe: <mailto:security-basics-subscribe () securityfocus com> Delivered-To: mailing list security-basics () securityfocus com Delivered-To: moderator for security-basics () securityfocus com Message-ID: <20040830171002.79558.qmail () web40807 mail yahoo com> Return-Path: security-basics-return-29831-koremeltdown=hotmail.com () securityfocus com X-OriginalArrivalTime: 01 Sep 2004 08:47:40.0644 (UTC) FILETIME=[56F3E240:01C49000] Hi, I know there is a tool more sofisticated than netstat that can even show me which file is listening to connections and stuff like that. do u know about such tool ? thanks __________________________________ Do you Yahoo!? New and Improved Yahoo! Mail - Send 10MB messages! http://promotions.yahoo.com/new_mail ---------------------------------------------------------------------------Computer Forensics Training at the InfoSec Institute. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors. Gain the in-demandskillsof a certified computer examiner, learn to recover trace data left behindbyfraud, theft, and cybercrime perpetrators. Discover the source ofcomputercrime and abuse so that it never happens again. http://www.infosecinstitute.com/courses/computer_forensics_training.html----------------------------------------------------------------------------_________________________________________________________________ Is your PC infected? Get a FREE online computer virus scan from McAfee(r) Security. http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 ------------------------------------------------------------------------ --- Computer Forensics Training at the InfoSec Institute. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors. Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse so that it never happens again. http://www.infosecinstitute.com/courses/computer_forensics_training.html ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- Computer Forensics Training at the InfoSec Institute. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors. Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse so that it never happens again. http://www.infosecinstitute.com/courses/computer_forensics_training.html ----------------------------------------------------------------------------
--- End Message ---
--------------------------------------------------------------------------- Computer Forensics Training at the InfoSec Institute. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors. Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse so that it never happens again. http://www.infosecinstitute.com/courses/computer_forensics_training.html ----------------------------------------------------------------------------
Current thread:
- [Fwd: Re: a tool like nestat] Joe White (Sep 08)