TCPdump & Snort - Intrusion Detection Systems
TCPdump & Snort - Intrusion Detection Systems
TCPdump & Snort - Intrusion Detection Systems
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Wireshark<br />
Previously know as Ethereal<br />
Graphical tool to read and analyze <strong>TCPdump</strong> output<br />
1. Capture and dump traffic with tcpdump -w file.dump<br />
2. Open file with Wireshark to get graphical representation<br />
<strong>TCPdump</strong> & <strong>Snort</strong> Thomas Fischer February 3, 2010 Page 5