FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
smbtcpdump Tcpdump(1) hacked to better understand SMB packets
3.4 net Deleted on this many watch lists=1 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: obrien@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
Also Listed In: security
License: not specified in port
tcpdump(1) hacked to better understand SMB packets. 
smbtcpdump gives the ability to interpret NBT and SMB packets in a fair bit
of detail.

To capture all SMB packets going to or from host "fred" try this:

	tcpdump -s 1500 'port 139 and host fred'

If you want name resolution or browse packets then try ports 137 and
138 respectively:

	tcpdump -s 1500 '(port 139 or 138 or 137) and host fred'

Example Output:

Here is a sample of a capture of a "SMBsearch" directory search. If
you don't get output that looks like this then smbtcpdump is not working
correctly.

NBT Session Packet
Flags=0x0
Length=57

SMB PACKET: SMBsearch (REQUEST)
SMB Command   =  0x81
Error class   =  0x0
Error code    =  0
Flags1        =  0x8
Flags2        =  0x3
Tree ID       =  2048
Proc ID       =  11787
UID           =  2048
MID           =  11887
Word Count    =  2
smbvwv[]=
Count=98
Attrib=HIDDEN SYSTEM DIR 
smbbuf[]=
Path=\????????.???
BlkType=0x5
BlkLen=0
SVNWeb : PortsMon

No installation instructions: this port has been deleted.

The package name of this deleted port was:

PKGNAME:

There are no ports dependent upon this port

Configuration Options
     No options to configure

Master Sites:
  1. ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/
  2. ftp://ftp.ee.lbl.gov/
  3. ftp://ftp.uu.net/networking/ip/trace/tcpdump/

Number of commits found: 4

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
08 May 2002 20:55:15
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
Remove smbtcpdump.  AFAIK all this functionality is now in the offical
tcpdump.  If it isn't, someone should work with tcpdump.org to get it in.
08 May 2002 20:54:08
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
To ports@freebsd.org.
22 Nov 2000 00:57:34
files touched by this commit
obrien search for other commits by this committer
Add $FreeBSD$, which help me in problem reports.    
08 Oct 2000 07:19:09
files touched by this commit
asami search for other commits by this committer
Convert category net to new layout.  

Number of commits found: 4

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
tomcat7Jun 26
tomcat8Jun 26
php55Jun 25
php55-gdJun 25
php55-mbstringJun 25
php55-wddxJun 25
php55-zipJun 25
php56Jun 25
php56-gdJun 25
php56-mbstringJun 25
php56-pharJun 25
php56-wddxJun 25
php56-zipJun 25
php70Jun 25
php70-gdJun 25

17 vulnerabilities affecting 44 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26147
Broken 280
Deprecated 284
Ignore 544
Forbidden 0
Restricted 202
No CDROM 85
Vulnerable 58
Expired 13
Set to expire 271
Interactive 0
new 24 hours 1
new 48 hours5
new 7 days37
new fortnight52
new month111

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.