Penetration Testing mailing list archives
Re: digital surveillance techniques for forensics/penetration
From: Eoghan Casey <eco () corpus-delicti com>
Date: Fri, 23 Jan 2004 09:12:44 -0500
Kerri,On the open source side, you can use Tcpflow (http://www.circlemud.org/~jelson/software/tcpflow/) or Ethereal (www.ethereal.com). Two solid commercial tools are NetDetector (www.niksun.com) and NetIntercept (www.sandstorm.net).
I wrote a paper comparing several open source and commercial tools for this purpose - it will be published next month in the first issue of Digital Investigation. You can request a free copy of the first issue at http://www.compseconline.com/digitalinvestigation/.
Eoghan Casey Kerri Sharp wrote:
Hi List Anyone know of the tool which reconstructs captured data?? For example intercepted email with attachments or ftp data. I saw a flash demo sometime ago at www.sainstitute.org about digital surveillance techniques which they cover in DefensiveForensics andDefensiveHacking. This demo has since been removed :-( any ideas anyone?Thx Kerri --------------------------------------------------------------------------- ----------------------------------------------------------------------------
--------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- digital surveillance techniques for forensics/penetration Kerri Sharp (Jan 22)
- Re: digital surveillance techniques for forensics/penetration sil (Jan 23)
- Re: HailStorm - was digital surveillance techniques for forensics/penetration DaemonLabs.com Support (MLM) (Jan 29)
- RE: digital surveillance techniques for forensics/penetration Rob Shein (Jan 23)
- Re: digital surveillance techniques for forensics/penetration Byron Sonne (Jan 23)
- RE: digital surveillance techniques for forensics/penetration Jerry Shenk (Jan 23)
- Re: digital surveillance techniques for forensics/penetration Bill Weiss (Jan 23)
- Re: digital surveillance techniques for forensics/penetration Eoghan Casey (Jan 23)
- Re: digital surveillance techniques for forensics/penetration lists-mptruem-f25-com (Jan 23)
- Re: digital surveillance techniques for forensics/penetration Chris Reining (Jan 25)
- RE: digital surveillance techniques for forensics/penetration Jason Jaszewski (Jan 27)
- <Possible follow-ups>
- RE: digital surveillance techniques for forensics/penetration ADM SMS (Jan 27)
- RE: digital surveillance techniques for forensics/penetration Franklin Sheila H DLVA (Jan 28)
- Re: digital surveillance techniques for forensics/penetration John Daniele (Jan 28)
- Re: digital surveillance techniques for forensics/penetration sil (Jan 23)