AlexRodriguez Posted May 3, 2011 Share Posted May 3, 2011 hello i would like to ask for some help, i just downloaded a trial of elcomsoft wireless security auditor, well my question is how do you capture tcpdump files that can be imported to elcomsoft software. I would really appreciate the help thanks hack5 community Quote Link to comment Share on other sites More sharing options...
digininja Posted May 3, 2011 Share Posted May 3, 2011 To save a file from tcpdump use -w. For more info just do man tcpdump Quote Link to comment Share on other sites More sharing options...
Mr-Protocol Posted May 4, 2011 Share Posted May 4, 2011 I'd recommend Wireshark vs tcpdump, but use what fits you. Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted May 4, 2011 Share Posted May 4, 2011 Wireshark or TCPDump will work, you will need to save your captures as a pcap file and import into Elcomsoft. Quote Link to comment Share on other sites More sharing options...
Jason Cooper Posted May 4, 2011 Share Posted May 4, 2011 If using tcpdump don't forget to set your snap length (-s) or you won't necessarily be collecting full packets. I usually use a snap length of 0 which should capture the full packets, I believe that most OS's will default it to 68 bytes which is enough to grab most packets headers but not their data. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.