Skip to content

Instantly share code, notes, and snippets.

@hodrigohamalho

hodrigohamalho/tcp-dump.md

Forked from luszczynski/tcp-dump.md
Created June 17, 2020 17:17
Show Gist options
  • Save hodrigohamalho/74d730f98f87d4769546ea4119e037be to your computer and use it in GitHub Desktop.
Save hodrigohamalho/74d730f98f87d4769546ea4119e037be to your computer and use it in GitHub Desktop.
Download ZIP
TCP Dump Examples
Raw
tcp-dump.md

TCP Dump Example

Check TCP Packet Content on Port 80

tcpdump -i eth0 -nn -s 1800 -XXX port 80

Check TCP Syn Packet on Port 80

tcpdump -i eth0 -nn 'tcp[tcpflags] & (tcp-syn) != 0' and port 80 > conexoes.txt

Find HTTP User Agents

tcpdump -i eth0 -vvAls0 | grep 'User-Agent:'

Save network dump and analyse it

tcpdump -i eth0 -nn -s 1800 -XXX -w dump.pcap port 80
strings dump.pcap
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment