|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: RE: Rendering captured sessions w/ RS
From: Todd M Waskelis (Todd.Waskelis
netsec.net)Date: Fri Apr 28 2000 - 10:03:38 CDT
- Next message: Mark.Teicherpredictive.com: "Re: RealSecure log management -reply"
- Previous message: X-Force: "ISSalert: ISS Security Alert Summary: v5 n4"
- In reply to: jphoytstatestreet.com: "Rendering captured sessions w/ RS"
- Reply: Todd M Waskelis: "RE: Rendering captured sessions w/ RS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
majordomoiss.net Contact issforum-owneriss.net for help with any problems!
----------------------------------------------------------------------------
Jim,
Look into Session Wall, it does a great job of this.
Regards,
Todd
____________________________________
Todd M Waskelis
Vice President
Managed Security Services
NetSec
www.netsec.net
703.561.0420 (Local)
703.328.0277 (Cell)
877.799.9380 (Toll Free)
703.561.0426 (Fax)
____________________________________
This electronic message contains information from Network Security Technologies, Inc or its affiliates, which may be confidential, proprietary or otherwise protected from disclosure. The information is intended to be used solely by the recipient(s) named above for the purposes intended by the originator. If you are not an intended recipient, be aware that any review, disclosure, copying, distribution or use of this transmission or its contents is prohibited. If you have received this transmission in error, please notify us immediately by telephone at (703) 561-0420, or by electronic mail at salesnetsec.net.
-----Original Message-----
From: owner-issforumiss.net [mailto:owner-issforumiss.net]On Behalf Of
jphoytstatestreet.com
Sent: Thursday, April 27, 2000 3:19 PM
To: issforumiss.net
Subject: Rendering captured sessions w/ RS
TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
majordomoiss.net Contact issforum-owneriss.net for help with any problems!
----------------------------------------------------------------------------
Here's a question for y'all:
RealSecure of course can capture and display sessions (viewing current
or saved sessions). Does anybody here have any thoughts on how those
saved sessions might be rendered? Most basic example: a users views a
web page. This involves at least one, usually many tcp sessions
(hits), each of which can appear as a separate saved sessions on the
RealSecure console. The console session viewer will only display raw
text (or ascii equivalents of binary data) of the page. Has anybody
figured out how to actually view the html files, image files, other
MIME content that the captured packets represent?
This question could be extended to extracting the raw data and
reconstructing ftp-downloaded files, e-mail attachments etc.
Any thoughts?
-Jim Hoyt
- Next message: Mark.Teicherpredictive.com: "Re: RealSecure log management -reply"
- Previous message: X-Force: "ISSalert: ISS Security Alert Summary: v5 n4"
- In reply to: jphoytstatestreet.com: "Rendering captured sessions w/ RS"
- Reply: Todd M Waskelis: "RE: Rendering captured sessions w/ RS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]