Feel free to include my content in your page via my
RSS feed Follow @irongeek_adc

Help Irongeek.com pay for
bandwidth and research equipment:
Subscribestar or Patreon

Search Irongeek.com:

Affiliates:

Help Irongeek.com pay for bandwidth and research equipment:

Man page of SSHOW

SSHOW

Section: Maintenance Commands (8)
Index of this MAN page

Back To MAN Pages From BackTrack 5 R1 Master List

NAME

sshow - SSH traffic analysis tool

SYNOPSIS

sshow [-d] [-i interface | -p pcapfile] [expression]

DESCRIPTION

sshow analyzes encrypted SSH-1 and SSH-2 traffic, identifying authentication attempts, the lengths of passwords entered in interactive sessions, and command line lengths.

The following advisory describes the attacks implemented by sshow in detail:

: http://www.openwall.com/advisories/OW-003-ssh-traffic-analysis.txt

OPTIONS

-d: Enable verbose debugging output.
-i interface: Specify the interface to listen on.
-p pcapfile: Process packets from the specified PCAP capture file instead of the network.
expression: Specify a tcpdump(8) filter expression to select traffic to sniff.

AUTHORS

Solar Designer <solar@openwall.com>
Dug Song <dugsong@monkey.org>

This document was created by man2html, using the manual pages.
Time: 07:34:21 GMT, September 13, 2011

Printable version of this article

15 most recent posts on Irongeek.com:

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.