Eavesdrop Overview

By: James Reynolds - Revised: 2014-01-23 richard

Introduction

Eavesdrop Overview - by James Reynolds
Eavesdrop is a network capture application (based on tcpdump) that captures and understands TCP conversations. It keeps track of the TCP flag history and extracts the payload of each conversation as it is captured. The payload is also searched for image data to display. Graphs can be created to view trends in the captured data.

James gave an overview and demonstration of Eavesdrop.