[Dshield] Tool to Reassemble wireshark capture
Joel Esler
joel.esler at sourcefire.com
Thu Jun 5 02:05:41 GMT 2008
Tcpxtract?
Will that do what you want?
Joel
On Jun 4, 2008, at 9:10 PM, David J. Bianco wrote:
> Cox, Shawn wrote:
>> Could anyone recommend a tool to parse a wireshark capture to
>> reconstruct http traffic including images?
>>
>
> Most people just use Chaosreader. Which does a good job with images
> and text. If you need to extract other information (downloaded files,
> for example), something like tcpxtract is probably your best bet.
> Both are free software.
>
> David
> _________________________________________
> SANSFIRE !! The Internet Storm Center Conference
> http://www.sans.org/sansfire08/
>
--
Joel Esler joel.esler at sourcefire.com
[m]
More information about the list
mailing list