Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Display and Capture Filters Defined
- Thread starter marco25
- Start date
Hi,
There are some on sniffer.com, but a nice library of filters can be downloaded from regards,
Robert Robert A.H. Wullems
Sniffer University Instructor
SCM / CNX / MCP
Citee Education
the Netherlands
There are some on sniffer.com, but a nice library of filters can be downloaded from regards,
Robert Robert A.H. Wullems
Sniffer University Instructor
SCM / CNX / MCP
Citee Education
the Netherlands
While Laura's filters are great, you really need to study her book (Packet Filtering, Catching the Cool Packets) and learn how to make your own filters. It's not that hard..even with NAI's Sniffer ![[upsidedown]](/data/assets/smilies/upsidedown.gif "[upsidedown] [upsidedown]")
There are some other Sniffer programs that lend themselves to custom filters easier.
You can snarf the signatures needed from Snort's website of sigs and use the strings that you need. You will have to play with the offsets on some though so we end back at learning how to make these things.
MikeS
Find me at
"Take advantage of the enemy's unreadiness, make your way by unexpected routes, and attack unguarded spots."
Sun Tzu
There are some other Sniffer programs that lend themselves to custom filters easier.You can snarf the signatures needed from Snort's website of sigs and use the strings that you need. You will have to play with the offsets on some though so we end back at learning how to make these things.
MikeS
Find me at
"Take advantage of the enemy's unreadiness, make your way by unexpected routes, and attack unguarded spots."
Sun Tzu
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question