TCPDUMP flags
1.Sniff all SYN flagged packets:
root@bt:~# tcpdump 'tcp[13] & 2 != 0'
2.Sniff all PSH flagged packets:
root@bt:~# tcpdump 'tcp[13] & 8 != 0'
3.Sniff all URG flagged packets:
root@bt:~# tcpdump 'tcp[13] & 32 != 0'
4.Sniff all RST flagged packets:
root@bt:~# tcpdump 'tcp[13] & 4 != 0'
5.Sniff all ACK flagged packets:
root@bt:~# tcpdump 'tcp[13] & 16 != 0'
6.Sniff all FIN flagged packets:
root@bt:~# tcpdump 'tcp[13] & 1 != 0'
7.Sniff all SYN-ACK flagged packets:
root@bt:~# tcpdump 'tcp[13] = 18'
阅读(1134) | 评论(1) | 转发(0) |