> On Wed, 2004-03-24 at 07:45, Sandy C wrote: >> I would like to be able to be able to examine the >> data portion of a network packet after matching it. >> >> I figured there would be some kind of target for >> this, but there isn't...or at least I couldn't find >> any. >> >> What is the best way to go about this? Should I be >> thinking of writing a target extension? >> > You could use something like ntop or tcpdump. > >> Thanks! >> S C Hi, maybe you should try ethereal. It has some very powerfull filtering functions that may fit your needs. -- Frédéric de Villamil. Président Epitanime Amez vos ennemis; ce n'est pas facile, mais ca va les emmerder. neuro@xxxxxxxxx http://www.seclab.jp
