Scroll to navigation

NDRDUMP(1) System Administration tools NDRDUMP(1)

NAME

ndrdump - DCE/RPC Packet Parser and Dumper

SYNOPSIS

ndrdump [-c context] {pipe} {format} {in|out|struct} {filename}

ndrdump [pipe]

ndrdump

DESCRIPTION

ndrdump tries to parse the specified filename using Samba's parser for the specified pipe and format. The third argument should be either in, out or structdepending on whether the data should be parsed as a request, reply or a public structure.

Running ndrdump without arguments will list the pipes for which parsers are available.

Running ndrdump with one argument will list the functions and public structures that Samba can parse for the specified pipe.

The primary function of ndrdump is debugging Samba's internal DCE/RPC parsing functions. The file being parsed is usually one exported by wiresharks “Export selected packet bytes” function.

The context argument can be used to load context data from the request packet when parsing reply packets (such as array lengths).

VERSION

This man page is correct for version 4.0 of the Samba suite.

SEE ALSO

wireshark, pidl

AUTHOR

This utility is part of the Samba[1] suite, which is developed by the global Samba Team[2].

ndrdump was written by Andrew Tridgell.

This manpage was written by Jelmer Vernooij.

NOTES

1.
Samba
2.
Samba Team
04/24/2024 Samba 4.0