[Snort-users] Mail from tcpdump packet logs

Tommy Moore tmoore at ...10052...
Wed Sep 10 08:17:10 EDT 2003

Hi guys.

Is there any way I can use Snort to grab the e-mail messages send and received out of a tcpdump packet log?
I've used mailsnarf from the Dsniff package to do this live on the wire, but I'm looking for a way to do this from a binary tcpdump log.
I saw in the Snort faq that there's a way to do this, but there weren't any instructions for doing this.

Thanks for any help you can provide.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20030910/1f8d133e/attachment.sig>

More information about the Snort-users mailing list