Re: sniffing files from ftp session

[Jonathan James <jj () jonathanj com>]

Robert,

There are a couple of tools out there for carving data out of tcp- 
streams,
here are a couple of examples for you:

Foremost - http://foremost.sourceforge.net
TCPXtract - http://tcpxtract.sourceforge.net

Sincerely,

Jonathan James
Senior IT-security consultant
Telephone: +46 8 4774730
E-mail: jj () jonathanj com
Website: http://www.jonathanj.com | www.atea.com/en

On Jun 2, 2009, at 9:21 PM, Robert Jaroszuk wrote:

> Hi all.
>
> I need a sniffer which could sniff and save files from ftp traffic.
> I think about something silimar to filesnarf or mailsnarf (dsniff).
> Anyone knows such tool ?
>
> Regards,
>
> --
> ... Robert Jaroszuk ...
> GCS/IT/O d? s: a- C++ ULB++++$ P+ L++++$ E- W++ K- N+ DI+ V-
> w M- PS+ PE Y(+) PGP-(+++) t-- 5? X R !tv b++>++++ D- y+ G++
> .. The superior warrior wins without fighting -- Sun Tzu. ..
>         -> New photos: http://zim.iq.pl/photo/
>
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification  
> Review Board
>
> Prove to peers and potential employers without a doubt that you can  
> actually do a proper penetration test. IACRB CPT and CEPT certs  
> require a full practical examination in order to become certified.
>
> http://www.iacertification.org
> ------------------------------------------------------------------------

MvH

Jonathan James
Telephone: +46 8 50218315
Cellphone: +46 766519078
E-mail: jj () jonathanj com
Website: http://www.jonathanj.com


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------