@fantpmas I regularly use #tcpdump and #wireshark it and if you have any questions would be happy to help you. My advise is to just dive in and try. As it is a listening tool, there is not much wrong you can do.

#dnscap v2.2.0 released!
- anonymize EDNS Client Subnet
- hash table for TCP state lookup
- cleanup and improvements to building and testing
#DNS #capturing #tcpdump #network #opensource
https://github.com/DNS-OARC/dnscap/releases/tag/v2.2.0

Con frío, lluvia, y un día nublado, acá ando, mate 🧉 en mano, grabando contenido para el nuevo curso de Networking #TCPIP de JuncoTIC.com!

Definiendo detalles de la trama #Ethernet, #DIX, y haciendo capturas de tráfico para analizar los bits que viajan por la red. Luego a analizar el header #IP, y de ahí para arriba 😁

Buena semana!

#tcpdump #wireshark #protocol #networking #internet

Nueva tarde de grabación para JuncoTIC.com!! 💪

Seguimos avanzando con el curso de Networking TCP/IP completo!

Hoy le tocó el turno a #Ethernet y al algoritmo de BackOff en CSMA/CD 🙂

Próximamente: Comprensión de la trama Ethernet y sus variantes, campos, y lo interesante! 👉 análisis y captura de tráfico con #wireshark y #tcpdump para parecer un poquito más #hacker's 😎

Los tengo al tanto de los avances para el que le interese sumarse cuando esté online!

Why am I receiving error "could not locate CEF message in tcpdump"? #syslog #azure #tcpdump

https://askubuntu.com/q/1480606/612

Hat jemand eine Idee, wie ich unter #macOS rausfinden kann, welche App z.B. www.google-analytics.com regelmäßig abruft? Per #TCPDump oder #Sniffer sehe ich das zwar, aber kann die Quelle nicht herausfinden

#FollowerPower

Análisis de tráfico de red mediante tcpdump

#Network #privacy #SysAdmin #tcpdump #wireshark

https://osiux.com/que-no-se-entere-nadie.html

Entendiendo la red: topologías, protocolos y comandos de ejemplo para diagnosticar problemas básicos

#ARP #Blog #Consola #DHCP #DNS #dsniff #ICMP #IP #namp #Network #ssh #SysAdmin #TCP #tcpdump #Terminal #traceroute #tshark #tty #UDP

https://osiux.com/entendiendo-la-red.html

Getting started with tcpdump

I'll be more active and I start with a primer for #tcpdump on #Linux

https://ittavern.com/getting-started-with-tcpdump/

General #tcpdump rule:

The more -vvvv the better the -vvvvvvvvvvvvvvvvvvvvvvvvv

Don't take the unnecessary risk of running #Wireshark as #root. Instead, create your capture file (.cap, .pcap) with #tcpdump (`sudo tcpdump -i eth0 -w file.pcap`), then open it for analysis in Wireshark as your regular non-root user. 👍
#networking #cybersecurity #soc #gnu #linux #cli

Sometimes #occamsrazor really applies well. Before I went to bed last night, I enagged #tcpdump, a tool that helps with network troubleshooting, to figure out where the failure point was. It was firewall-related and not routing. I learned that I really need to read up on how firewalling with #firewalld works. I assumed it was effecting iptables but actually nftables. I have a boat load of learning to do.

if you hop on your egress device and run `tcpdump -n -i $external-device port 5353` do you see a bunch of zeroconf mDNS traffic for devices that aren't on your network and never have been?

i am seeing plenty on that link and none of it are from or about devices actually on my network. my other place is using Comcast's CPE and i don't have interactive shell access to it.

#household #mDNS #uhoh #networking #infosec #privacy #tcpdump

Still one of my favorite tcpdump one-liners: Get LLDP/CDP traffic from your local router/switch.

It's super handy when something is not working or when you're not sure which port you're connected to. Also handy for diagnosing VLAN issues.

#linux #tcpdump #networking

tcpdump -nn -v -i enp7s0 '(ether[12:2]=0x88cc or ether[20:2]=0x2000)'

Starting my day digging through a pcap file in Wireshark. Newly upgraded to Ubuntu 22.04 shibboleth severs can’t reach LDAP anymore. Yippee.

#tcpdump #Wireshark #Shibboleth #LDAP #BangHeadHere

simple trick to record network traffic under #Windows

https://www.stefangeiger.ch/2023/03/30/windows-network-trace.html

#tcpdump #netsh #wireshark

Nothing says “good morning” like capturing fresh SSL packets via tcpdump and viewing them in Wireshark in an effort to understand why mod_cluster and Apache are misbehaving.

#SystemAdministration #Apache #tcpdump #Wireshark #BangHeadHere

Capturing a Network Trace on #Azure Container Apps #msftadvocate #tcpdump https://techcommunity.microsoft.com/t5/apps-on-azure-blog/capturing-a-network-trace-on-azure-container-apps/ba-p/3776134

Hey there! I made a writeup about turning a #RaspberryPi into an additional HDMI port for my #linux laptop over ethernet. It uses #ffmpeg, #tcpdump, #xrandr and #udhcpd.

I learnt a lot about all these topics while working on it, and I did my best to help fellow tinkerers reproduce the project.

I really hope to find the time and inspiration to write many more articles in the future.

https://pierre-couy.dev/tinkering/2023/03/turning-rpi-into-external-monitor-driver.html

Ok, went down a slight rabbit hole... You can use #nftables to log #packets to the nflog facility. #tcpdump or #tshark can read from the nflog queue and report info on the packets. Nftables can sample the packets randomly using numgen random mod 1000 < 50 I can sample 5% of packets (or whatever) if the output is easily readable by #Julialang I can turn the network visibility issue into a data analysis issue. What's the best way to read the output? tshark json?