SSHOW(8) System Manager's Manual SSHOW(8)NAME
sshow - SSH traffic analysis tool
SYNOPSIS
sshow [-d] [-i interface | -p pcapfile] [expression]
DESCRIPTION
sshow analyzes encrypted SSH-1 and SSH-2 traffic, identifying authentication attempts, the lengths of passwords entered in interactive ses-
sions, and command line lengths.
The following advisory describes the attacks implemented by sshow in detail:
http://www.openwall.com/advisories/OW-003-ssh-traffic-analysis.txt
OPTIONS -d Enable verbose debugging output.
-i interface
Specify the interface to listen on.
-p pcapfile
Process packets from the specified PCAP capture file instead of the network.
expression
Specify a tcpdump(8) filter expression to select traffic to sniff.
SEE ALSO dsniff(8), sshmitm(8)AUTHORS
Solar Designer <solar@openwall.com>
Dug Song <dugsong@monkey.org>
SSHOW(8)
Check Out this Related Man Page
DNSSPOOF(8) System Manager's Manual DNSSPOOF(8)NAME
dnsspoof - forge replies to DNS address / pointer queries
SYNOPSIS
dnsspoof [-i interface] [-f hostsfile] [expression]
DESCRIPTION
dnsspoof forges replies to arbitrary DNS address / pointer queries on the LAN. This is useful in bypassing hostname-based access controls,
or in implementing a variety of man-in-the-middle attacks.
OPTIONS -i interface
Specify the interface to use.
-f hostsfile
Specify the pathname of a file in hosts(5) format. Only one hostname allowed per line (no aliases), although hostnames may contain
wildcards (such as *.doubleclick.net).
expression
Specify a tcpdump(8) filter expression to select traffic to sniff.
If no hostsfile is specified, replies will be forged for all address queries on the LAN with an answer of the local machine's IP address.
FILES
/usr/share/dsniff/dnsspoof.hosts
Sample hosts file.
SEE ALSO dsniff(8), hosts(5)AUTHOR
Dug Song <dugsong@monkey.org>
DNSSPOOF(8)
I am trying to print the lines with pattern and my pattern is set to a variable express
awk '/$express/{where=NR;print}' test2.log
I am not getting any data even though i have the data with the pattern. Can seomeone correct me with the awk command above? (20 Replies)
HI I have made a connection with external server which is also UNIX. I was tryign connectivity with this by telnet which fails and ping i sshowing socket is alive and traceroute tells the asterisk astersik:traceroute to 153.88.182.28 (153.88.182.28), 30 hops max, 8080 byte packets
1 * * *
2 *... (1 Reply)
I need to find all files and folders containing keyword from the topmost directory deep down the tree but omitting all references to keyword in web-search logs and entries, i.e. excluding search and browsing history made using web-browser1, web-browser2, web-browser3, (bypassing all entries of the... (8 Replies)