From: Jerry Shenk (jshenk@decommunications.com)
Date: Fri Jan 23 2004 - 11:58:04 EST
To enable 'live capture tools' to process a precollected dump file, I
use tcpreplay (http://tcpreplay.sourceforge.net/ ).
-----Original Message-----
From: Byron Sonne [mailto:blsonne@rogers.com]
Sent: Thursday, January 22, 2004 11:39 PM
To: Kerri Sharp
Cc: forensics@securityfocus.com; pen-test@securityfocus.com
Subject: Re: digital surveillance techniques for forensics/penetration
> Anyone know of the tool which reconstructs captured data?? For example
> intercepted email with attachments or ftp data.
Try the dsniff suite by Dug Song, although that's geared towards live
captures not stuff after the fact.
-- For Good, return Good. For Evil, return Justice. ------------------------------------------------------------------------ --- ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- ----------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:46 EDT