Find the answer to your Linux question:
Results 1 to 4 of 4

Thread: NTLMv2 Response

Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1

    NTLMv2 Response


    Hello,

    I captured some network packages with tcpdump and wrote it to a pcap file.
    Is there a way to extract the SMB2 packages with the "NTLMv2 response" on the command line
    without GUI, for example Wireshark ?

    Best regrads
    B.-D.

  2. #2
    Trusted Penguin Irithori's Avatar
    Join Date
    May 2009
    Location
    Munich
    Posts
    4,028
    You must always face the curtain with a bow.

  3. #3
    Hello,

    is there way, to filter the NTLMv2 response via a regular expression with sed and awk ?

    Best regards
    B.-D.

  4. $spacer_open
    $spacer_close
  5. #4
    Trusted Penguin Irithori's Avatar
    Join Date
    May 2009
    Location
    Munich
    Posts
    4,028
    The tshark output is text.
    So the general answer to this general question is: yes
    You must always face the curtain with a bow.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •