Dear all, I have to ask this although I knew this might be a stupid question. I have installed the latest windows sebek client in my Windows XP honeypot machine and I have followed all the instructions in the ReadMe file.
Then, at the console I enabled the sebek server using the command as shown below:- [r...@localhost ~]# /etc/rc.d/init.d/sebekd start Starting Sebekd: [ OK ] Then, I ran the command as shown in the sebek documentation and I got nothing although I have typed several words in the word documents (of my Windows honeypot machine). Please refer below:- I ran this for the first time and no output detected:- [r...@localhost ~]# sbk_extract -i eth1 -p 1101 monitoring eth1: looking for UDP dst port 1101 [r...@localhost ~]# sbk_extract -i eth0 -p 1101 | sbk_ks_log.pl monitoring eth0: looking for UDP dst port 1101 Am I missing any step(s) here or some configurations ?? Wira
_______________________________________________ Honeywall mailing list [email protected] https://public.honeynet.org/mailman/listinfo/honeywall
