How-To: Configure and Run Xplico

Maybe you've heard of Xplico… it's a wonderful program that takes either live data or captured packets and rips it to shreds of easily digestible content. That's the kind of thing that's pretty awesome to have around. Well, this guide will get you up and running with it in no time.

I'm making a few assumptions here, so they should probably be listed:

  • You're using Backtrack 4
  • You have already installed Xplico
apt-get install xplico
  • You didn't uninstall Apache after installing Xplico for some reason

As one quick note, if you did a distribution upgrade from the Backtrack 4 release to the new 2.6.34 kernel build your Xplico installation may have been hosed. To fix it just remove the package (which really contains nothing now) and then install it again.

apt-get remove xplico
apt-get install xplico

Simple enough. If you're running something other than Backtrack, just make sure you have Xplico and all the prerequisites installed through your package manager/elite hacking ability/black magic.

Before you start running Xplico you'll probably want to configure the file sizes that can be used, so do the following:

vi /etc/php5/apache2/php.ini

Then edit it to match the following two lines (they're not consecutive in the file):
post_max_size = 100M
upload_max_filesize = 100M

Running Against PCAPs

service apache2 start
service xplico start

Then navigate to http://localhost:9876

Running Against Live Feeds

service xplico.rltm.console start
