Who's Online
There are currently, 88 guest(s) and 0 member(s) that are online.
You are Anonymous user. You can register for free by clicking here
|  |
Xplico version 0.5.5: reconstruct attachment from a PCAP File
Posted on Thursday, 04 March 2010 @ 10:43:55 EST
Contributed by cdupuis
| Topic: Sniffers
About
The goal of Xplico is extract from an internet traffic capture the applications data contained.
For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer.
Xplico is an open source Network Forensic Analysis Tool (NFAT).
Xplico is released under the GNU General Public License (see License for more details).
Features
- Protocols supported: HTTP, SIP, IMAP, POP, SMTP, TCP, UDP, IPv6, …;
- Port Independent Protocol Identification (PIPI) for each application protocol;
- Multithreading;
- Output data and information in SQLite database or Mysql database and/or files;
- At each data reassembled by Xplico is associated a XML file that uniquely identifies the flows and the pcap containing the data reassembled;
- Realtime elaboration (depends on the number of flows, the types of protocols and by the performance of computer -RAM, CPU, HD access time, …-);
- TCP reassembly with ACK verification for any packet or soft ACK verification;
- Reverse DNS lookup from DNS packages contained in the inputs files (pcap), not from external DNS server;
- No size limit on data entry or the number of files entrance (the only limit is HD size);
- IPv4 and IPv6 support
- Modularity. Each Xplico component is modular. The input interface, the protocol decoder (Dissector) and the output interface (dispatcer) are all modules
- The ability to easily create any kind of dispatcer with which to organize the data extracted in the most appropriate and useful to you
Xplico version 0.5.5: WebMail
Posted by: Gianluca C. on the Xplico web site
In this version:
- migrating to SQLite3
- telnet dissector
- webmail dissector
- webmail manipulator: Yahoo!, AOL, Hotmail (all without attachments)
- Improved LLC dissector
- Improved XI
- script to check new release (only in source code)
Hotmail (Live) depends on the language. Currently the languages supported are Italian and English.
Any feedback are welcome: forum.
You can download VirtualBox image, source code and Ubuntu 9.10 package here.
| |
Login
Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.
|
| "Xplico version 0.5.5: reconstruct attachment from a PCAP File" | Login/Create an Account | 3 comments | Search Discussion |
|
| | The comments are owned by the poster. We aren't responsible for their content. |
|
|
|
No Comments Allowed for Anonymous, please register |
|
Re: Xplico version 0.5.5: reconstruct attachment from a PCAP File (Score: 1)
by yanrikun on Wednesday, 05 May 2010 @ 04:03:49 EDT
(User Info | Send a Message) | An example of that philosophy would be the Rolex Admiral watches range. When you look at a replica watch selling website, you are sure to find some reference to this spectacular range of fake rolex watches in the testimonials section. Rolex replica Watches [www.ereplicawatches.net] As a tribute Breitling for Bentley, a variable tachometer is essential to this new model. This tachometer provide important information to the wearer such as average speed, the distance covered and the speed reached. We are at thewatch display also has a booklet;At thecomfortable, classic watch is definitely walking with you every day needs. Omega replica Watches [www.ereplicawatches.net] Experiment with your hair style and Silk watches, and you find the right way to connect a watches. If you travel and get mini-style your hair after the wind, the log transformation is useful to enter into a watches Silk watches Silk watches. The only difference is that in order to attract both ends and to make a bandanna knot under the jaw. A tote bag is a medium to large square sunglass or purse with durable handles to carry a variety of things and every day items. The term tote which means to carry all, can be traced back to the 17th century but it was not used in the same sense as today. Replica Watches [www.ereplicawatches.net] The Brand baroque print losange. This watches is 15.7 inches in length and 43.4 in height, a little bit smaller than the previous one. It is 100 percent silk twill. This black and white baroque scraf will show the world a totally different you. The name V8 originates from the V8 engine which is used in F1 racing cars at present, which tells the watch´s stability. From its name we can know its racing-car watch pedigree. Louis Vuitton Sunglasses [www.sunglassestrade.com] Rolex watches are the epitome of good living. From film stars to pro golfers, everyone who is someone will wear a Rolex. Since Rolex watches are beautiful, Rolex replicas emerged on the market, and they proved to be a hit. For an inexperienced person, replica Rolex watches appears exactly like the original. These early clocks were driven by weights; spring-driven clock C from which mens watches were ultimately developed C did not come along until well over one hundred years later. Cartier replica Watches [www.ereplicawatches.net] In April 2000, Wang Hai resolute farewell to their parents, covers two years to repair their own three thousand dollars, she has saved the table came to Beijing. in mid-May, Wang Hai in Beijing has officially opened a table laid repair. The new collection of replica watches quality upgrade 2007 selection are really worth watching and would certainly make you feel their own or gift them to your beloved. Breitling replica watches [www.ereplicawatches.net] Since these are reasonably priced, you can have many of these without burning a hole in your pocket. This will ensure that you have different watches which suit your numerous clothes. Diamond watches never lose their appeal. luxury watches with genuine Swiss movements are also still in vogue. Look and function are the most important criteria when choosing ´stopwatch. Replica Sunglasses [www.sunglassestrade.com] diamond watches Agassi light, indicating the quality and weight is proportional to the truth without!Simple single scale mining hours of fine-line design, coupled with a surfaceMoney catchy and dotted diamonds in the bezel in 18 carat white gold;or young Roman numerals with the body ofa white diamond and 18K gold bezel Qianman. Two types of game, a Lengao, an elegant, but equally elegant perfo
Read the rest of this comment... |
|
|
Re: Xplico version 0.5.5: reconstruct attachment from a PCAP File (Score: 1)
by nikeshoee on Saturday, 05 June 2010 @ 12:48:35 EDT
(User Info | Send a Message) | Companies replica watches [www.watchesday.com] like Guess, Diesel, replica [www.watchesday.com] watches [www.watchesday.com] DKNY and Emporio rolex watches [www.watchesday.com] Armani are creating rolex [www.watchesday.com] watches that are more accessible tag heuer [www.watchesday.com] with their fake rolex [www.watchesday.com] prices ranging from meaning breitling [www.watchesday.com] the consumer is breitling watches [www.watchesday.com] able to build up a collection omega watches [www.watchesday.com] of designer cartier [www.watchesday.com] watches to fit with the styles of the season. |
|
|
Re: Xplico version 0.5.5: reconstruct attachment from a PCAP File (Score: 1)
by waiter on Wednesday, 30 June 2010 @ 03:12:16 EDT
(User Info | Send a Message) | | in. Each Dense wow power leveling [www.toppowerlevel.net] Grinding Stone requires 4 Dense Stone. Therefore = 4x8 for each hand in which equals 32 stone for 20 tickets So overall it equals for wow power leveling [www.toppowerlevel.net] needed stone 60 x 32 This equals to 1920 Dense Stone
On my server Dense Stone is 2g but I’m sure it was a lot less when i bought all mine around 1g to 1g 50s. But I didn’t aion kina [www.toppowerlevel.net] buy from AH as that is more expensive. But I’m using AH price which is around 2g.
So to find out the price you aion kinah [www.mogxe.com] do 1920 divided by 20 then x 2
This equals to 192g.
But this is aion power level [www.toppowerlevel.net] AH price and I bought it from people who had a large supply and couldn’t sell them. SO try to find people who have a large amount of it as then you may get it for a cheaper price. Also try to be nice to people as that cheap aion power leveling [www.mogxe.com] helps.
Also another good way to do this is to farm thorium and mithril as these nodes drop this stone. ALso you can use the thorium for wow power leveling [www.toppowerlevel.net] the above ones or sell it to buy more.
BUt price variues 重庆团购 [www.ccqdiy.com] on each server and i would advice trying to buy for around 1g 50s to 1g 80s. This makes the price around 175g. Notes:
- The Tickets are Soulbound when you get them, so buy wow gold [www.mogxe.com] turn it in only whit your main Char. The widgets and the Armor kits are free to trade / mail. |
|
|
|
