Tcpdump is great to capture traffic on your network, but sometimes you'd like to have something a little lighter to quickly test network activity (or just spy on your friends).
Ngrep is a pcap-aware tool that will allow you to specify extended regular expressions to match against data part of packets on the network.
That's what the website says.
But more than that it's a lot of fun to play with!
Here's a screen shot of me emailing the word 'Password:' to myself on one terminal and ngrepping and detecting that string on another terminal! (You can find out about alot of things on a network this way)
Super Cool!
More Info:
http://ngrep.sourceforge.net/
0 comments:
Post a Comment