Re: [TSCM-L] {2514} ip manager expert

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Mark Black <7..._at_io.com>
Date: Sun, 16 Mar 2008 12:32:40 -0500

<snip for brevity and grammatical sanity>

Or, instead of using shady software from a country well known for
stealing the work of others, you can use tools like wireshark, nmap,
nessus, et al.

I tried to examine this "sniffer" but since it's all in Chinese I
couldn't tell what it's really supposed to do. A Google for qq sniffer
only pulls up Chinese links and a filter to English only gives only
links to mirrors and no English descriptions. I do see that it uses
the WinPcap packet library. I think it has something to do with trying
to sniff QQ traffic. QQ is a Chinese instant messaging service, like
ICQ and AIM. A HEX examination of the .exe shows that the program
tries to establish a connection with pop.qq.com, which might be a mail
interface. Also has code to connect via HTTP to wpa.qq.com. Also, a
function called GETPASSWORD.

Support innovation... never buy Chinese.

Mk.
Received on Sat Mar 02 2024 - 00:57:15 CST

This archive was generated by hypermail 2.3.0 : Sat Mar 02 2024 - 01:11:43 CST