FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
smbtcpdump Tcpdump(1) hacked to better understand SMB packets
3.4 net Deleted on this many watch lists=1 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: obrien@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
Also Listed In: security
License: not specified in port
tcpdump(1) hacked to better understand SMB packets. 
smbtcpdump gives the ability to interpret NBT and SMB packets in a fair bit
of detail.

To capture all SMB packets going to or from host "fred" try this:

	tcpdump -s 1500 'port 139 and host fred'

If you want name resolution or browse packets then try ports 137 and
138 respectively:

	tcpdump -s 1500 '(port 139 or 138 or 137) and host fred'

Example Output:

Here is a sample of a capture of a "SMBsearch" directory search. If
you don't get output that looks like this then smbtcpdump is not working
correctly.

NBT Session Packet
Flags=0x0
Length=57

SMB PACKET: SMBsearch (REQUEST)
SMB Command   =  0x81
Error class   =  0x0
Error code    =  0
Flags1        =  0x8
Flags2        =  0x3
Tree ID       =  2048
Proc ID       =  11787
UID           =  2048
MID           =  11887
Word Count    =  2
smbvwv[]=
Count=98
Attrib=HIDDEN SYSTEM DIR 
smbbuf[]=
Path=\????????.???
BlkType=0x5
BlkLen=0
SVNWeb : PortsMon

No installation instructions: this port has been deleted.

The package name of this deleted port was:

PKGNAME:

distinfo: There is no distinfo for this port.

There are no ports dependent upon this port


Configuration Options
     No options to configure

Master Sites:
  1. ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/
  2. ftp://ftp.ee.lbl.gov/
  3. ftp://ftp.uu.net/networking/ip/trace/tcpdump/

Number of commits found: 4

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
08 May 2002 20:55:15
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
Remove smbtcpdump.  AFAIK all this functionality is now in the offical
tcpdump.  If it isn't, someone should work with tcpdump.org to get it in.
08 May 2002 20:54:08
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
To ports@freebsd.org.
22 Nov 2000 00:57:34
files touched by this commit
obrien search for other commits by this committer
Add $FreeBSD$, which help me in problem reports.    
08 Oct 2000 07:19:09
files touched by this commit
asami search for other commits by this committer
Convert category net to new layout.  

Number of commits found: 4

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
apache24Dec 06
cryptoppDec 06
mod_http2-develDec 06
py-cryptography*Dec 06
qemu*Dec 06
qemu-devel*Dec 06
qemu-sbruno*Dec 06
chromiumDec 05
ImageMagickDec 04
ImageMagick-nox11Dec 04
ImageMagick7Dec 04
ImageMagick7Dec 04
ImageMagick7-nox11Dec 04
ImageMagick7-nox11Dec 04
py-pillowDec 04

35 vulnerabilities affecting 74 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26965
Broken 313
Deprecated 177
Ignore 577
Forbidden 1
Restricted 214
No CDROM 82
Vulnerable 59
Expired 15
Set to expire 156
Interactive 0
new 24 hours 11
new 48 hours31
new 7 days82
new fortnight123
new month294

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.