[10526] in bugtraq
Re: Windump for Windows
daemon@ATHENA.MIT.EDU (Brett Glass)
Thu May 13 18:06:22 1999
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <4.2.0.37.19990512131419.04459e80@localhost>
Date: Wed, 12 May 1999 13:15:51 -0600
Reply-To: Brett Glass <brett@LARIAT.ORG>
From: Brett Glass <brett@LARIAT.ORG>
X-To: Edward Gibbs <ed@IPRG.NOKIA.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <001b01be9bec$d9803dc0$25530718@iprg.nokia.com>
How do we know that this is not a remote sniffer? There's
no source, so it's hard to tell without ANOTHER sniffer.
--Brett Glass
At 01:28 PM 5/11/99 -0700, Edward Gibbs wrote:
>FYI...
>
>TCPdump is a network capture program developed by Network Research Group
>(NRG) of the Information and Computing Sciences Division (ICSD) at Lawrence
>Berkeley National Laboratory (LBNL) in Berkeley, California.
>
>Originally available only on UNIX platform, this is the porting on Windows
>(95/98, NT 4.0). It consists in an executable (the windump main program)
>with a network capture driver: both are specific for each platform.
>
>To download and install WinDump see:
>
>http://netgroup-serv.polito.it/tools/analyzer/Install/windump/
>
>Edward Gibbs, ed@iprg.nokia.com
>Systems Engineer, Security Specialist
>Nokia IP - http://www.iprg.nokia.com/
>232 Java Drive, Sunnyvale, CA 94089 USA
>Direct: 1-408-990-2187
>Cellular: 1-408-504-4276
>Fax: 1-408-743-5675
>
>perl -e 'print $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'
