Snort mailing list archives
Tcpdump full conversation capture
From: Court Graham <court.computersecurity () gmail com>
Date: Wed, 28 Sep 2005 13:45:41 -0700
All, I have been performing binary packet captures with tcpdump for use in a snort signature! ( tcpdump -w "file" host x.x.x.x ) This string does not capture the full conversation. Does anyone know the switch that will enable this functionality!
Current thread:
- Tcpdump full conversation capture Court Graham (Sep 28)
- Re: Tcpdump full conversation capture Joel Esler (Sep 28)
- RE: Tcpdump full conversation capture Patrick Harper (Sep 28)