Skip to content
/ tds-sniffer Public

sniffer freetds protocol (current now only support sybase sql server >= 10 which use tds 5.0 version)

License

MIT license
5 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

arstercz/tds-sniffer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

tds-sniffer.c

tds-sniffer.c

 
 

Repository files navigation

tds-sniffer

tds-sniffer is forked from Snapper, it can sniffer freetds protocol(current now only support sybase sql server >= 10 which use tds 5.0 version), So far only sql query and procedure can be parsed.

note: we only test Sybase-ASE 12.5 in the Centos 5.5 and 6.4 os system, and does not parse the params value in both sql query and procedure.

How to compile?

DEPENDENCIES

libpcap-devel

compile

gcc -g -Wall -o tds-sniffer -lpcap tds-sniffer.c

How to use?

./tds-sniffer eth0 "tcp dst port 5000"    
NET: 10.0.21.0 a03fe00 CMASK: 255.255.255.0 ffffff00
Device: eth0
Filter expression: tcp dst port 5000
2018-03-01T19:48:08 10.0.21.2:52313 -> 10.0.21.5:5000  sql_len: 9  query: select 1
2018-03-01T19:48:08 10.0.21.2:52307 -> 10.0.21.5:5000  sql_len: 9  query: select 1
2018-03-01T19:48:09 10.0.21.2:52307 -> 10.0.21.5:5000  sql_len: 61  query: SELECT t.username AS username FROM account t WHERE t.id = @p0

References

About

sniffer freetds protocol (current now only support sybase sql server >= 10 which use tds 5.0 version)

Topics

sniffer tds sybase

Resources

Readme

License

MIT license
Activity

Stars

5 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages