Xplico, I have already featured on the blog so for short is a "decoder internet", you realize such a capture with wireshark, you see everything scroll per frame which makes reading "technical" (for cons was necessarily more info)
The with xplico you see live images, video etc..
So since 0.5.6 instalation on ubuntu (other debianoide I think this poses no problem) is ultra simple, there is a deb. The interface is greatly improved, the live capture is readily available you can do everything with just the web interface.
The 0.5.7 brings improvements for VOIP (voice over internet protocool)
"This release Introduces Improvements In The SIP and RTP dissector.
In this version WAS The RTCP Added aussi dissector, With This dissector Xplico Is Able to Obtain The Phone Of The caller numbers and Called Party (Obviously only if this In The RTCP packets). " http://www.xplico.org/archives/687
decoders are becoming more numerous, but something that might be useful would be a function of cutting pcap apache as a limit 100M max. (Type "split"
http://oss.coresecurity.com/projects/impacket.html
) 
sudo su dpkg-i * deb #
where you saved the debian gedit / etc/php5/apache2/php.ini
# # # # edit by high values here, max # # # # = 100M post_max_size
################### ##################
/ etc / init.d / home xplico
http://bricowifi.blogspot.com/2009/08/tuto-xplico- Internet-decodeur.html
http://www.xplico.org/
http://sourceforge.net/projects/xplico/
0 comments:
Post a Comment