COCKOS
CONFEDERATED FORUMS
Cockos : REAPER : NINJAM : Forums
Forum Home : Register : FAQ : Members List : Search :
Old 07-18-2006, 01:54 AM   #1
julien
Human being with feelings
 
Join Date: Jul 2006
Posts: 16
Default Patch "v0.1-a": using pcap files.

This patch allows assniffer to read pcap files directly instead of listening from a network interface. This has been tested under Linux only.

How-To patch:

First of all, download the attached patch file (patch_0.1-a.zip) in /tmp for example.

1. wget http://www.cockos.com/assniffer/assniffer01.zip
2. unzip assniffer01.zip
3. cd source
4. mv wdl WDL
5. cp /tmp/patch_0.1-a.zip .
6. unzip patch_0.1-a.zip
7. patch -p1 < patch_0.1-a
8. cd assniffer
9. make


How-To use:

1. create a pcap file with tcpdump (change filter):
tcpdump -i eth0 -n -s0 -w test.cap "tcp and port 80 and host xx.xx.xx.xx"

2. use this file with assniffer:
./assniffer output_dir -r test.cap


How-To use in real-time:

1. mkfifo tunnel
2. tcpdump -i eth0 -n -s0 -w tunnel "tcp and port 80 and host xx.xx.xx.xx" &
3. ./assniffer output_dir -r tunnel

Last edited by julien; 07-18-2006 at 02:12 AM.
julien is offline   Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -7. The time now is 03:19 AM.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.