Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
"Unskilled attackers pester real security folk"
URG ACK PSH RST SYN FIN
[32] [16] [8] [4] [2] [1 ]
tcpdump bitmasking:
To find packets with the PSH flag set: tcpdump -nni eth0 'tcp[13] & 8!=0'
To find packets with the SYN and ACK flags set: tcpdump -nni eth0 'tcp[13] & 16!=0 && tcp[13] & 2!=0'
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.