FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
smbtcpdump Tcpdump(1) hacked to better understand SMB packets
3.4 net Deleted on this many watch lists=1 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: obrien@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
Also Listed In: security
License: not specified in port
tcpdump(1) hacked to better understand SMB packets. 
smbtcpdump gives the ability to interpret NBT and SMB packets in a fair bit
of detail.

To capture all SMB packets going to or from host "fred" try this:

	tcpdump -s 1500 'port 139 and host fred'

If you want name resolution or browse packets then try ports 137 and
138 respectively:

	tcpdump -s 1500 '(port 139 or 138 or 137) and host fred'

Example Output:

Here is a sample of a capture of a "SMBsearch" directory search. If
you don't get output that looks like this then smbtcpdump is not working
correctly.

NBT Session Packet
Flags=0x0
Length=57

SMB PACKET: SMBsearch (REQUEST)
SMB Command   =  0x81
Error class   =  0x0
Error code    =  0
Flags1        =  0x8
Flags2        =  0x3
Tree ID       =  2048
Proc ID       =  11787
UID           =  2048
MID           =  11887
Word Count    =  2
smbvwv[]=
Count=98
Attrib=HIDDEN SYSTEM DIR 
smbbuf[]=
Path=\????????.???
BlkType=0x5
BlkLen=0
SVNWeb : PortsMon

No installation instructions: this port has been deleted.

The package name of this deleted port was:

PKGNAME:

ONLY_FOR_ARCHS: nil

NOT_FOR_ARCHS: nil

distinfo: There is no distinfo for this port.

There are no ports dependent upon this port


Configuration Options
     No options to configure

Master Sites:
  1. ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/
  2. ftp://ftp.ee.lbl.gov/
  3. ftp://ftp.uu.net/networking/ip/trace/tcpdump/

Number of commits found: 4

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
08 May 2002 20:55:15
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
Remove smbtcpdump.  AFAIK all this functionality is now in the offical
tcpdump.  If it isn't, someone should work with tcpdump.org to get it in.
08 May 2002 20:54:08
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
To ports@freebsd.org.
22 Nov 2000 00:57:34
files touched by this commit
obrien search for other commits by this committer
Add $FreeBSD$, which help me in problem reports.    
08 Oct 2000 07:19:09
files touched by this commit
asami search for other commits by this committer
Convert category net to new layout.  

Number of commits found: 4

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
eximJun 21
openvpnJun 21
openvpn-mbedtlsJun 21
pear-Horde_ImageJun 21
pear-Horde_ImageJun 21
apache22Jun 20
apache24Jun 20
chromiumJun 16
curlJun 15
linux-flashplayerJun 15
p5-RT-Authen-ExternalAuthJun 15
rt42Jun 15
rt44Jun 15
firefoxJun 13
firefox-esrJun 13

13 vulnerabilities affecting 73 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 30410
Broken 167
Deprecated 83
Ignore 460
Forbidden 0
Restricted 207
No CDROM 84
Vulnerable 153
Expired 37
Set to expire 79
Interactive 0
new 24 hours 7
new 48 hours12
new 7 days41
new fortnight324
new month532

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2017 Dan Langille. All rights reserved.