Re: Extracting credentials from pcap
- From: "Brian Toovey" <admin@xxxxxxxxxxxx>
- Date: Mon, 17 Sep 2007 11:06:14 -0400
I am wondering if maybe the cleaned output of dsniff can then be used
as a filter in say ethereal or some other sniffer that can do reports?
dsniff is fantastic at pulling out various credentials but it doesn't
get the dates correct from pcap. When digging about the source code it
seems that dsniff just prints the current time/date when it finds a new
record. It doesn't even seem that libnids passes the pcap timestamp.
--
Brian Toovey
admin@xxxxxxxxxxxx
http://vulntrac.com
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
- Follow-Ups:
- Re: Extracting credentials from pcap
- From: Brian Toovey
- Re: Extracting credentials from pcap
- References:
- Extracting credentials from pcap
- From: David
- Extracting credentials from pcap
- Prev by Date: Re: Anonymizing Packets yet ensuring 0 % packet loss
- Next by Date: RE: Wiping Solaris Servers
- Previous by thread: RE: Extracting credentials from pcap
- Next by thread: Re: Extracting credentials from pcap
- Index(es):
