Penetration Testing mailing list archives
Re: dissect TCP/IP flow
From: "Jamie Riden" <jamie.riden () gmail com>
Date: Sat, 21 Jul 2007 17:21:56 +0100
On 20/07/07, João Henrique Ferreira de Freitas <joaohf () gmail com> wrote:
Hello, Anybody have a good how to, tutorial or papers about dissect a TCP/IP flow? The background is: I have a client/server application and need decode/dissect the communication. The goal is make a tool to interact with the server application, send commands and request operations.
tcpflow is useful to start off with. It will unpack live capture or tcpdump files into flows. http://www.circlemud.org/~jelson/software/tcpflow/ (apt-get install tcpflow for ubuntu/debian users) Or 'follow TCP stream' option under Wireshark can be helpful too. cheers, Jamie -- Jamie Riden / jamesr () europe com / jamie () honeynet org uk UK Honeynet Project: http://www.ukhoneynet.org/ ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- dissect TCP/IP flow João Henrique Ferreira de Freitas (Jul 20)
- Re: dissect TCP/IP flow silky (Jul 20)
- Re: dissect TCP/IP flow Mathieu CHATEAU (Jul 21)
- Re: dissect TCP/IP flow Chris Eagle (Jul 21)
- RE: dissect TCP/IP flow Serge Vondandamo (Jul 20)
- Re: dissect TCP/IP flow Jamie Riden (Jul 21)
- Re: dissect TCP/IP flow rajat swarup (Jul 23)
- Re: dissect TCP/IP flow silky (Jul 20)