smbcmp: a network capture diff tool for SMB traffic

Author(s)/Presenter(s):
Library Content Type:
Publish Date: 
Monday, September 23, 2019
Event Name: 
Event Track:
Focus Areas:
Abstract: 

smbcmp is a fully open source (GPL) debugging tool we wrote to compare and "diff" SMB traffic. It leverages Wireshark to deeply inspect SMB packets and compare nested fields between two network captures. This tool was considerably improved this summer thanks to the Google Summer of Code program. The talk will include a debugging session demonstration featuring the tool.

Watch video: