LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-23-2007, 12:10 AM   #1
rooh333
LQ Newbie
 
Registered: Mar 2007
Posts: 3

Rep: Reputation: 0
Question SMBSpy - SMBSniffer - anything else ?


hi there

1- SMBspy is dead , there is no homepage , and i couldnt manage to find a copy of the program . anybody out there has a copy ?

2- is there anyone out there experienced SMBsniffer with success ? any alternative ?

3- to finish my paper there is only one task , reconstruction of SMB transfered files , live or using dump file formats like pcap , any sample code in C or Ruby is appreciated , also any hint lead me to a working solution

4- there are some words about dumping files , but i never found anything regarding prints ? why ? arent they transferring over SMB when we are using SAMBA or a shared windows network ?

-- best regards

 
Old 03-23-2007, 07:40 PM   #2
OlRoy
Member
 
Registered: Dec 2002
Posts: 306

Rep: Reputation: 86
I'm pretty sure tcpflow can extract files from sessions. Just run it and then do file * to see what files they are. tcpextract can also do it, but it is somewhat buggy. Then there is also foremost which can be run on a pcap file. Check out http://geek00l.blogspot.com/search?q=foremost for more info.
 
Old 03-23-2007, 11:13 PM   #3
rooh333
LQ Newbie
 
Registered: Mar 2007
Posts: 3

Original Poster
Rep: Reputation: 0
thanks,
i had some experiences with tcpxtract but it was somehow unreliable , specially when i came to PDF ot office formats , will give tcpflow a try .

what about "print"s ? anny idea on this one ?
anybody ever recovered a sent-to-printer document over SMB ?

nobody have a copy of smbspy ? why did project died and now its erased from the earth ??

 
Old 03-25-2007, 05:19 AM   #4
rooh333
LQ Newbie
 
Registered: Mar 2007
Posts: 3

Original Poster
Rep: Reputation: 0
anybody know of any other project in this regard ? any experience to share ?

 
  


Reply

Tags
sniffer, sniffing


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:49 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration