RE: Command line network sniffing tools on NT/W2K

["Slighter, Tim" <tslighter () itc nrcs usda gov>]

In terms of sniffing, your first step might be to pick up the WinPcap. 

http://netgroup-serv.polito.it/winpcap/install/default.htm

 There are various sniffing utilities out there and have worked with most
all of them.  If you are looking for raw packet dump with TCPDump
functionality, I would highly recommend Ethereal for Win32.  

http://www.ethereal.com/distribution/win32/

-----Original Message-----
From: H Carvey [mailto:keydet89 () yahoo com]
Sent: Friday, December 07, 2001 2:21 PM
To: pen-test () securityfocus com
Subject: Re: Command line network sniffing tools on NT/W2K



In-Reply-To: <2FAEA868F23AD411AFD10000D11ED33E04686D18 () hagb037a siemens nl>


> I am missing some good tools in my toolbox. In
particular I am looking for
> command line:

Just a thought...if you have remote command line,
why not install WinVNC...you can install it and
launch it from the command line.

> - network sniffing tools (both general ones like
windump and password sniffing ones)

Winpcap installs pretty easily...

> - methods to find multi homed systems fast in a
large LAN/WAN environment

If you've got remote Registry access, it's not
hard.  Also, if SNMP happens to be installed...  ;-)

> Is Fsniff already out?

What did you find when you went by the FoundStone
site?


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/