Re: Packet analysis and protocol analysis
From: Carlos Fernandez Sanz (cfs-sec-basics_at_securityfocus.com)
Date: 07/27/05
- Previous message: Micheal Espinola Jr: "Re: RBLs for SPAM Control"
- In reply to: Ramki B: "Packet analysis and protocol analysis"
- Next in thread: Payton, Zack: "RE: Packet analysis and protocol analysis"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 27 Jul 2005 13:27:04 +0200 To: security-basics@securityfocus.com
The output varies from protocol to protocol. I suggest you start with a
filter that captures only the traffic from/to your own box, and only for
one protocol. Then play a bit, i.e. if you start with HTTP then browse
some pages, if you use MSN then chat a bit...
If you want to write your own sniffer of something, start by looking at
some source code.
For MSN, I wrote a small sniffer which is quite easy to understand (in
code), you can get it here if you want :
http://sourceforge.net/projects/im-snif/
Take a look at it. Nothing fancy but you can learn from it.
Ramki B wrote:
>I am trying to understand network packet analysis and exprimenting with
>Etherreal. I have a captured file and i do not to understand the output , is
>there any references in can look into for packet analysis and protocol
>analysis?
>
>Thanks...
>
>
>
>
>
>
- Previous message: Micheal Espinola Jr: "Re: RBLs for SPAM Control"
- In reply to: Ramki B: "Packet analysis and protocol analysis"
- Next in thread: Payton, Zack: "RE: Packet analysis and protocol analysis"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
