2016-09-01 16:20:09 +01:00
|
|
|
# ngrep
|
|
|
|
|
|
|
|
|
|
> Filter network traffic packets using regular expressions.
|
2019-06-04 10:00:08 +01:00
|
|
|
> More information: <https://github.com/jpr5/ngrep>.
|
2016-09-01 16:20:09 +01:00
|
|
|
|
|
|
|
|
- Capture traffic of all interfaces:
|
|
|
|
|
|
|
|
|
|
`ngrep -d any`
|
|
|
|
|
|
|
|
|
|
- Capture traffic of a specific interface:
|
|
|
|
|
|
|
|
|
|
`ngrep -d {{eth0}}`
|
|
|
|
|
|
|
|
|
|
- Capture traffic crossing port 22 of interface eth0:
|
|
|
|
|
|
|
|
|
|
`ngrep -d {{eth0}} port {{22}}`
|
|
|
|
|
|
|
|
|
|
- Capture traffic from or to a host:
|
|
|
|
|
|
|
|
|
|
`ngrep host {{www.example.com}}`
|
|
|
|
|
|
|
|
|
|
- Filter keyword 'User-Agent:' of interface eth0:
|
|
|
|
|
|
|
|
|
|
`ngrep -d {{eth0}} '{{User-Agent:}}'`
|
