Questions tagged [tcpdump]

tcpdump is a common packet analyzer that runs under the command line, utilizing BPF (Berkeley Packet Filter) language

tcpdump is a common packet analyzer that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached. tcpdump relies on the underlying libpcap packet capture library.

1045 questions

votes

1 answer

How to check transporting some data to the port?

I use Django 1.6 and Python 2.7 It is my tcpdump command. sudo /usr/sbin/tcpdump -n -X port 3331 And I kick the command from python because I'd like to use it in Django. import subprocess as sub def tcpdump(request, port): result =…

python django tcpdump

asked Mar 28 '15 at 08:39

shinriyo

votes

2 answers

Where can I find a file/struct layout for a tcpdump() file?

We are capturing packets to a file using tcpdump(). I need to write a program to parse it, does anyone know where I could find a file layout for a dump file created by this tool?

parsing logging tcpdump

asked May 25 '10 at 21:38

Kladskull

10,332
20
69
111

votes

1 answer

Caching details from TCP dump

I browsed a lot of data (lets say visited 30 websites) and saved all the traffic in tcpdump using wireshark. I want to know the caching time(max age) for all the objects in all the websites. Is there any smart way to accurately get caching life for…

browser tcp browser-cache wireshark tcpdump

asked Mar 12 '15 at 11:39

user3582768

votes

1 answer

tcpdump catching mac and rssi in linux

I'm trying to use a wlan adapter (TP-link TL-WN722N) in monitor mode to pick up RSS from signals in the environment (both beacons and clients). What I would like to do is to get the MAC address and RSS value into my own code somehow (preferably…

linux rss wifi tcpdump sniffer

asked Feb 27 '15 at 14:49

Jacob Sundqvist

votes

1 answer

tcpdump to show only the contents of the package and addresses of the sender and the recipient

Here are this way, but only displays the data without the sender and the recipient: tcpdump -i ath0 -X | grep -E "str1|str2" Interest here is such a result: ip > ip SOMEDATA ip > ip SOMEDATA ip > ip SOMEDATA

grep tcpdump

asked Feb 27 '15 at 10:09

user3686478

votes

2 answers

python subprocess not outputting all lines

I am using python to run tcpdump to capture some probe requests from my phone. Right now, I am just printing it to the console. def dumpNexus(self): proc = subprocess.Popen(["sudo", "tcpdump", "-i", "mon.wlan0", "-e", "-s", "0", "type",…

python subprocess stdout tcpdump

asked Jan 14 '15 at 01:09

user2413192

votes

1 answer

sniffing http headers on an embedded device

Is there any light weight tools which can filter and output http headers/responses in human readable form? Something like wireshark. I have tried tcpdump; but it is hard to read.

http header tcpdump

asked Apr 30 '10 at 07:52

l.thee.a

3,231
6
25
28

votes

1 answer

Why don't the tcp server reply my syn packet when I try to connect it through raw socket?

It depends on the iphdr.saddr field. When it was set to my own address or a random multicast address, I can see the server replied with the syn/ack packet. If set to other ips, the server didn't reply. How to explain it? The multicast address…

linux sockets networking tcp tcpdump

asked Oct 30 '14 at 06:17

qingfeng

votes

1 answer

Extract tcpdump timestamp from txt file

I'm trying to calculate the throughput from the output of tcpdump using python. So far I called tcpdump from python and managed to write the output in a text file. Sample output: 01:06:23.649464 0us IP (tos 0x0, ttl 128, id 63533, offset 0, flags…

python parsing tcpdump

asked Oct 29 '14 at 16:38

Bappy

votes

1 answer

script will not save locally over ssh

I am having some issues getting a script to run. This works perfectly from command line: ssh root@ip.add.re.ss /usr/sbin/tcpdump -i eth0 -w - | /usr/sbin/tcpdump -r - -w /home/cuckoo/cuckoo/storage/analyses/1/saveit.pcap However when I use this…

python ssh scripting pipe tcpdump

asked Oct 18 '14 at 00:59

Garth Austin

votes

1 answer

TCPDump and Signal

I have been running some experiments with TCPDump but I am running to a problem. Take the following captures as an example: 2014-10-12 18:46:21.351515 7314729679us tsft 1.0 Mb/s 2432 MHz 11b -53dB signal antenna 1 0us BSSID:00:14:bf:96:b7:10…

signals tcpdump

asked Oct 12 '14 at 19:19

Sean D

votes

1 answer

Why TCPDUMP shows Ethernet packet when querying TCP packet?

I am using TCPDUMP to intercept the network traffic on an Android device. The command I use is ./tcpdump -tt -nn -vv tcp > tcp.log In the result file (tcp.log), I found that there are not only TCP packets, but also some others with Ethernet…

networking tcp ip ethernet tcpdump

asked Sep 11 '14 at 19:05

Neverfaraway

votes

0 answers

TCP connection call collision simulation

I am learning socket programming and have a simple simulator where i have both client and server on the same machine. And i am trying to simulate a call collision. To achieve a "collision", response time between client and server should only take…

sockets tcp network-programming tcpdump

asked Aug 14 '14 at 06:15

mayor

votes

1 answer

Python popen process does not stay running

I have a Python process that uses os.popen to run tcpdump in the background. It then reads and processes the output from tcpdump. The process runs in the background as a daemon. When I execute this process from the command line, it runs just…

python linux cron tcpdump

asked Jul 11 '14 at 15:22

kittyhawk

votes

1 answer

Extract useful data from wireshark/tcpdump

I'm trying to extract data from gathered packages (tcpdump/wireshark). If I go to a website, all I can capture are the headers, but not the content of the webpage. Example: Tcpdump: 17:34:51.861910 IP HackMachine-G51J.47928 > 50.6.246.185.http:…

wireshark tcpdump sniffing

asked Jul 07 '14 at 15:36

TheChosenOne

Prev 1 2 3

…

69 70 Next