[TOOL] GreedyDog, Ethernet Packet Sniffer

From: support@securiteam.com
Date: 04/26/02 

From: support@securiteam.com
To: list@securiteam.com
Date: Fri, 26 Apr 2002 20:43:23 +0200 (CEST)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -

  GreedyDog, Ethernet Packet Sniffer
------------------------------------------------------------------------

DETAILS

GreedyDog is the ethernet packet sniffer forLinux, FreeBSD, OpenBSD,
NetBSD, Solaris, AIX, MacOSX, and Windows2000/Xp. GreedyDog keeps stream
of each TCP session and writes to logfile. So, to make a session stream,
it is not necessary to reconstruct the packets which are fragmented,
logfile can be analysed very easily. This feature is useful to log the
comparatively large session such as telnet. Administrator can watch the
telnet session of remote user as one stream unit until the connection
close, if cracker makes telnet session to other network by way of
administrated network, gdd can log all activities of cracker as one stream
that includes other network. Furthermore, gdd have IDS function based on
"grep&action".gdd monitors session stream, if suspicious action is
detected, gdd executes specified action.

ADDITIONAL INFORMATION

The tool can be downloaded from:
 <http://www.shadowpenguin.org/sc_toolbox/unix/gdd/index.html>
http://www.shadowpenguin.org/sc_toolbox/unix/gdd/index.html

The information has been provided by <mailto:webmaster@shadowpenguin.org>
SPS.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.