tcpdump (Linux Sniffer)

This is a great tool, a powerfull Linux sniffer, that lets you even sniff layer two packets.

All you need to do for using it is (as root) enter this command

tcpdump -i any -l
If you want to listen on any interface of you PC (could not work in Promiscuous mode) and put the output on the screen.

tcpdump -i eth0 -w file

This will instruc tcpdume to work only with etho (-i eth0) and to write to file the output for later analisys.

After capturing the file you can use Ethereal to graphic the results.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: