Linux command
impacket-sniff 命令
安全
权限或系统影响较大,执行前请核对目标。
常用示例
Capture network packets
sudo impacket-sniff [eth0]
Sniff with a filter expression
sudo impacket-sniff -filter '[tcp port 80]' [eth0]
说明
impacket-sniff is a basic packet capture tool using Impacket's raw socket capabilities. It captures network traffic on the specified interface and displays packet information. The tool provides a simple way to observe network traffic using Impacket's protocol parsing, which can be useful for debugging or understanding network communications during security assessments.
参数
- -filter _FILTER_
- BPF filter expression to limit captured packets
FAQ
What is the impacket-sniff command used for?
impacket-sniff is a basic packet capture tool using Impacket's raw socket capabilities. It captures network traffic on the specified interface and displays packet information. The tool provides a simple way to observe network traffic using Impacket's protocol parsing, which can be useful for debugging or understanding network communications during security assessments.
How do I run a basic impacket-sniff example?
Run `sudo impacket-sniff [eth0]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does -filter _FILTER_ do in impacket-sniff?
BPF filter expression to limit captured packets