Snort mailing list archives

Extracting files from snort captures

From: "Toni Heinonen" <Toni.Heinonen () teleware fi>
Date: Sat, 16 Nov 2002 02:38:03 +0200

I have captured traffic in, say, the regular tcpdump format. I would
like to extract files from those dumps. Now I've already seen what
dsniff's mailsnarf and filesnarf can do, but how about other protocols?
For instance, I have an RTSP stream here, and I simply want the IP/UDP
headers removed, that's all. How can I do this, any ready softwares to
just print on to stdout in binary form the actual data in the saved
tcpdump sniff, without UDP/IP headers?

-- 
Toni Heinonen, Teleware Oy
  Wireless +358 (40) 836 1815
  Telephone +358 (9) 3434 9123
  toni.heinonen () teleware fi
  www.teleware.fi


-------------------------------------------------------
This sf.net email is sponsored by: To learn the basics of securing
your web site with SSL, click here to get a FREE TRIAL of a Thawte
Server Certificate: http://www.gothawte.com/rd524.html
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Extracting files from snort captures Toni Heinonen (Nov 18)