远程嗅探流量并传递嗅探

.

0

linux命令:sniff_host: tcpdump -nn -i eth1 -w - | nc 192.168.0.2 666 666 192.168.0.2 nc | - -w eth1 -i -nn tcpdump sniff_host: sniff_host: tcpdump -nn -i eth1 -w - | nc 192.168.0.2 666rootopen.com
linux命令:sniff_host: tcpdump -nn -i eth1 -w - | nc 192.168.0.2 666 666 192.168.0.2 nc | - -w eth1 -i -nn tcpdump sniff_host: sniff_host: tcpdump -nn -i eth1 -w - | nc 192.168.0.2 666rootopen.com
frbz 2018-01-15 14:18:48
输出
替代方案1 远程嗅探流量并传递嗅探

我有一个小型嵌入式Linux设备,我想用它来嗅探外部网络,但我不想为嵌入式平台重新编译/交叉编译snort。所以我使用tcpdump over ssh将所有流量作为pcap数据传递给“普通”Linux系统,然后将pcap数据传递给snort进行处理。.

linux命令:ssh root@pyramid \ "tcpdump -nn -i eth1 -w -" | snort -c /etc/snort/snort.conf -r - - -r /etc/snort/snort.conf -c snort | -" -w eth1 -i -nn "tcpdump \ root@pyramid ssh ssh root@pyramid \ "tcpdump -nn -i eth1 -w -" | snort -c /etc/snort/snort.conf -r -rootopen.com
linux命令:ssh root@pyramid \ "tcpdump -nn -i eth1 -w -" | snort -c /etc/snort/snort.conf -r - - -r /etc/snort/snort.conf -c snort | -" -w eth1 -i -nn "tcpdump \ root@pyramid ssh ssh root@pyramid \ "tcpdump -nn -i eth1 -w -" | snort -c /etc/snort/snort.conf -r -rootopen.com
.
输出

评论

相关推荐
共收录0条命令行
这里是记录和分享命令行的地方, 所有命令行都可以进行评论、提交替代方案.

推荐
    热门命令