|
|
For the windows version, you need
to install WinpCap 2.1 or newer (http://netgroup-serv.polito.it/winpcap/) For the linux version, you need to install libpcap. (http://www.tcpdump.org/). You must also execute Owns as root.
OWNS is quite easy to use. 1) Select the sniffer you want to use and the network interface
Seh sniffer is available only on Windows 95/98 and
Me. 2) Select which form will
have the output files
3) Http Filter options Save http headers : tell if you want to save http headers. All http headers are saved with .header extension. Here is an http header : HTTP/1.1 200 OK Date: Mon, 07 May 2001 18:47:11 GMT Server: Apache/1.3.12 (Unix) g2am/1.44 adutil/1.8 g2ad/1.73 FrontPage/4.0.4.3 mod_ssl/2.6.6 OpenSSL/0.9.5a Last-Modified: Mon, 29 Apr 2001 10:48:50 GMT Accept-Ranges: bytes Content-Length: 831 Keep-Alive: timeout=10, max=100 Connection: Keep-Alive Content-Type: text/plain
Save TCP stream : save the TCP stream for an http connection. Here is a TCP stream for a http connection : HTTP/1.1 302 Found Date: Mon, 07 May 2001 19:32:30 GMT Server: Apache/1.3.12 (Unix) Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=iso-8859-1
df <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <HTML><HEAD> <TITLE>302 Found</TITLE> </HEAD><BODY> <H1>Found</H1> The document has moved <A HREF="http://209.15.2.13/~wr/images/wr_button.gif">here</A>.<P> </BODY></HTML>
0 A TCP stream can contain several http messages. Save files : Choose which files you want to save.
4) Choose if you want to save mails and news
5) Then push the “Start Capture button”
6) All files are saved in “files” subdirectory.
|
Help/Faq
: OWNS Manual
