Linux command
impacket-sniffer 命令
安全
权限或系统影响较大,执行前请核对目标。
常用示例
Sniff default protocols (ICMP, TCP, UDP)
sudo impacket-sniffer
Sniff specific protocols
sudo impacket-sniffer [icmp] [tcp]
Sniff only UDP traffic
sudo impacket-sniffer [udp]
说明
impacket-sniffer is a simple packet sniffer that uses raw sockets to listen for packets matching specified protocols. It opens a raw socket for each protocol, uses select() to monitor incoming packets, and decodes them using Impacket's ImpactDecoder.IPDecoder for display. Unlike tcpdump, this tool does not accept an interface argument or BPF filter expressions. It listens on all available interfaces via raw sockets and filters only by protocol type.
FAQ
What is the impacket-sniffer command used for?
impacket-sniffer is a simple packet sniffer that uses raw sockets to listen for packets matching specified protocols. It opens a raw socket for each protocol, uses select() to monitor incoming packets, and decodes them using Impacket's ImpactDecoder.IPDecoder for display. Unlike tcpdump, this tool does not accept an interface argument or BPF filter expressions. It listens on all available interfaces via raw sockets and filters only by protocol type.
How do I run a basic impacket-sniffer example?
Run `sudo impacket-sniffer` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
Where can I find more impacket-sniffer examples?
This page includes 3 examples for impacket-sniffer, plus related commands for nearby Linux tasks.