Results 1 to 2 of 2

Thread: Sniffer log files

  1. #1
    Senior Member
    Join Date
    Sep 2003
    Posts
    161

    Sniffer log files

    my friend wanted to know if there is a site, or book that will teach him how to read hex log files from sniffers. Is there any books or sites that cover such topics indeapth.

    thanks

  2. #2
    Senior Member
    Join Date
    Feb 2004
    Posts
    105

    re: reading hex dumps from sniffers

    Here is a decent explanation of what the hex means/corresponds to in a sniffer log file. The faq doesn't go into much detail about reading the hex, but rather focuses on the ascii output as a means of reading the hex:

    http://www.robertgraham.com/pubs/sniffing-faq.html#5.

    From my experience, which I'm not stating is the end-all, be-all by far, the sniffer normally has a protocol analyzer built-in that does the hard work for you. Ethereal is a prime example. In fact, I believe Syngress just published a book that covers Ethereal in great detail. Your friend my want to pick it up...

    yep, i found the link for the Ethereal book:

    http://www.ethereal.com/news/item_20040302_01.html


    Does this fit your friend's needs or is he/she looking to decode the packet hex manually?

    Cheers,
    <0
    Ego is the great Logic killer

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •