[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Sniffing ICQ traffic

To: Jeremiah Cornelius <jeremiah@nur.net>
Subject: Re: [Full-Disclosure] Sniffing ICQ traffic
From: ttsoares@orion.ufrgs.br
Date: Mon, 10 Nov 2003 14:55:17 -0200

Quoting Jeremiah Cornelius <jeremiah@nur.net>:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> On Monday 10 November 2003 05:40, Marcos Machado wrote:
> > Does anybody know about any tool to sniff ICQ traffic?
> > 
> > I've been searching for a week without success. I am currently using the 
> > msgsnarf from dsniff package (2.3), but it works only with a limited 
> > version (2k) and the protocol has changed. Nowadays, it's quite useless.
> 
> Ethereal:
> http://www.ethereal.com/
> 
> Win32 Complete Installer:
> http://download.openxtra.com/epa/3_1_0/Network/Ethereal_XTRA.exe
> 
> "Because anything less, would be uncivilized."
> 
> Protocol reassembly - "ICQ"
> Tools - "Follow TCP Stream"

By the way... do you know a good text or some examples about how do write
filters to ethereal?  The syntax, variables, etc...

Thks.



-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Sniffing ICQ traffic
  - From: Jeremiah Cornelius <jeremiah@nur.net>

References:
- [Full-Disclosure] Sniffing ICQ traffic
  - From: Marcos Machado <listas@istf.com.br>
- Re: [Full-Disclosure] Sniffing ICQ traffic
  - From: Jeremiah Cornelius <jeremiah@nur.net>

Prev by Date: RE: [Full-Disclosure] Feeding Stray Cats
Next by Date: Re: weekend silence [WAS: RE: [Full-Disclosure] Feeding Stray Cats]
Previous by thread: Re: [Full-Disclosure] Sniffing ICQ traffic
Next by thread: Re: [Full-Disclosure] Sniffing ICQ traffic
Index(es):
- Date
- Thread