Bugtraq mailing list archives

Source code IS available (Was: Re: Windump for Windows)

From: jkwilli2 () UNITY NCSU EDU (Ken Williams)
Date: Fri, 14 May 1999 11:19:03 -0400


On Wed, 12 May 1999, Brett Glass wrote:

Date: Wed, 12 May 1999 13:15:51 -0600
From: Brett Glass <brett () LARIAT ORG>
To: BUGTRAQ () netspace org
Subject: Re: Windump for Windows

How do we know that this is not a remote sniffer? There's
no source, so it's hard to tell without ANOTHER sniffer.

--Brett Glass

At 01:28 PM 5/11/99 -0700, Edward Gibbs wrote:

FYI...

TCPdump is a network capture program developed by Network Research Group
(NRG) of the Information and Computing Sciences Division (ICSD) at Lawrence
Berkeley National Laboratory (LBNL) in Berkeley, California.

Originally available only on UNIX platform, this is the porting on Windows
(95/98, NT 4.0). It consists in an executable (the windump main program)
with a network capture driver: both are specific for each platform.

To download and install WinDump see:

http://netgroup-serv.polito.it/tools/analyzer/Install/windump/

Edward Gibbs, ed () iprg nokia com
Systems Engineer, Security Specialist
Nokia IP - http://www.iprg.nokia.com/
232 Java Drive, Sunnyvale, CA 94089 USA
Direct: 1-408-990-2187
Cellular: 1-408-504-4276
Fax: 1-408-743-5675

perl -e 'print $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'


actually, the source code for all of the programs:
Analyzer.exe, packet95.exe, PacketNT.exe, WinDump.exe, WinDump95.exe
(plus libpcap, tcpslice, convdump, FlowsDet, query too)

can be found here:
http://netgroup-serv.polito.it/tools/analyzer/Install/bin/sources.zip

it's mirrored, of course, in the usual place too:
<http://packetstorm.genocide2600.com/>


take it easy,

Ken Williams
jkwilli2 () csc ncsu edu

Packet Storm Security                 http://packetstorm.genocide2600.com/
Trinux: Linux Security Toolkit http://www.trinux.org/ ftp://ftp.trinux.org
PGP DH/DSS/RSA Public Keys     http://packetstorm.genocide2600.com/pgpkey/
E.H.A.P. VP & Head of Operations http://www.ehap.org/   tattooman () ehap org
NCSU Computer Science    http://www.csc.ncsu.edu/    jkwilli2 () csc ncsu edu
SHANG: Secure Highly Available Networking Group http://shang.csc.ncsu.edu/

Current thread:

At Ease 5.0 Security Hole, (continued)
- - - At Ease 5.0 Security Hole Tim Conrad (May 13)
    - Re: At Ease 5.0 Security Hole Vincent Janelle (May 14)
    - ssh-1.2.27 is out. Jonas Eriksson (May 14)
    - Re: fts...(improved patch) Stas Kisel (May 14)
  - Re: fts, du, find Przemyslaw Frasunek (May 14)
- Buffer overflow in WinAMP 2.x Wojtek Kaniewski (May 12)
  - Re: Buffer overflow in WinAMP 2.x William Yodlowsky (May 14)
  - Re: Buffer overflow in WinAMP 2.x Jello Biafra (May 16)
  - Microsoft Security Bulletin (MS99-015) aleph1 () UNDERGROUND ORG (May 17)
- Re: Windump for Windows Brett Glass (May 12)
  - Source code IS available (Was: Re: Windump for Windows) Ken Williams (May 14)