04-09-2002
TCP stream rebuild
If you have used snort to build a folder list of computers IP and their packets is there a tcp stream follow application that can be used to re-build the packets? Like ethereal?
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
i really have an issue with the otherwise outstading FreeBSD Handbook when it comes to kernel building. information on the proper steps to take is really confusing. i think that chapters 9 and 21 need to be combined to give a very concise format on how best to deal with kernel building/rebuidling... (1 Reply)
Discussion started by: xyyz
1 Replies
2. UNIX for Dummies Questions & Answers
I want to convert a Microfocus Sequential file to a Line Sequential Variable file. The reason I want to do this is so that I can upload the file from a UNIX box to a PC as a text file. I know that there is a command called "rebuild" that will allow me to convert the files, but I can not get it to... (1 Reply)
Discussion started by: douknownam
1 Replies
3. HP-UX
I thought I would post it again..once a bad drive is replaced need to rebuild it right?? Is disk and drive same? So what command need when the disk gets replaces. When i did diskinfo...and found out the bad disk...and need to replace that..
Thanks if someone could answer this question i have. (1 Reply)
Discussion started by: catwomen
1 Replies
4. HP-UX
Hi....
I newbee to this and wanted help on hpux11 system. Disk is being replaced and need to rebuild and what r the commands I need to perform after the disk is swapped :confused:
Thanks! (1 Reply)
Discussion started by: catwomen
1 Replies
5. Shell Programming and Scripting
Hello UNIX and Oracle Gurus,
After doing an intensive search from different websites, the UNIX forum I am posting this message seeking help..
I am trying to accomplish the following tasks through the shell script:
1. Rebuild indexes on a Table in Oracle
2. Analyze indexes and table... (0 Replies)
Discussion started by: madhunk
0 Replies
6. BSD
hi
Howto rebuild the whole portsystem on freeBSD?
THX (3 Replies)
Discussion started by: ccc
3 Replies
7. Shell Programming and Scripting
Hi
I used this command:
mplayer http://host/axis-cgi/mjpg/video.cgi -user root -passwd root \
-cache 1024 -fps 25.0 -nosound -vc ffh264 \
-demuxer 3 -dumpstream -dumpfile output.avi It's ok but...
Video Playing is very fast! Why? Is it a synch problem?
What parameter I have to use for... (1 Reply)
Discussion started by: takeo.kikuta
1 Replies
8. UNIX for Dummies Questions & Answers
hi,
system operation: unix sco 3.2.4
Kernel not rebuild, do not remove or update tcp/ip e3H0 driver.
messages:
cat:cannot open../sdevice.d/5
line:5.1 32 -1
fatal error:mdevice:wrong number of fields
idmaster:device do not exist in therefore can not be update
idinstall: cannot... (0 Replies)
Discussion started by: milen
0 Replies
9. Linux
hi to all I wanted to edit a enigma2 image to my box ..
the image is root.img ..
Analysed then I have the picture and I have this:
parted root.img
WARNING: You are not superuser. Watch out for permissions.
GNU Parted 2.2
Using /home/soft/Bureau/enigma2/root.img
Welcome to GNU Parted! Type... (3 Replies)
Discussion started by: soft
3 Replies
10. Solaris
I have problem with oracle solaris 10 running on oracle sparc T4-2 server.
Os information: 5.10 Generic_150400-03 sun4v sparc sun4v
Output from tcpstat.d script
TCP bytes: out outRetrans in inDup inUnorder
6833763 7300 98884 0... (2 Replies)
Discussion started by: insatiable1610
2 Replies
LEARN ABOUT DEBIAN
suricata
SURICATA(8) System Manager's Manual SURICATA(8)
NAME
suricata - Next Generation Intrusion Detection and Prevention Tool
SYNOPSIS
suricata [options]
DESCRIPTION
suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety
of attacks / probes by searching packet content.
This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression,
Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards.
It supports acquiring packets through NFQUEUE, PCAP (live or offline) etc.
OPTIONS
-c config_file
Use configuration file config_file
-i interface
Sniff packets on interface.
-r file
Read the tcpdump-formatted file tcpdump-file. This will cause Suricata to read and process the file fed to it. This is useful for
offline analysis.
-q queue_id
Sniff packets sent by the kernel through NFQUEUE. This allows running Suricata in inline mode (IPS) for packets captured by iptables
using the NFQUEUE target.
-s signatures
Path to the signatures file.
-l log_dir
Path to the default log directory.
-D Run as daemon
--init-errors-fatal
Enable fatal failure on signature init error.
SEE ALSO
tcpdump(1), pcap(3).
AUTHOR
suricata was written by the Open Information Security Foundation.
This manual page was written by Pierre Chifflier <pollux@debian.org>, for the Debian project (and may be used by others).
February 2010 SURICATA(8)