Dark-Alex-17/kapow
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
04014e1254fad5654ff34408ecd9f327f2bf643f
kapow/poc/examples/tcpdump/README.md
Roberto Abdelkader Martínez Pérez 04014e1254 Remote tcpdump demo
2019-09-06 13:11:52 +02:00

622 B
Raw Blame History

Remote tcpdump sniffer with source filtering

  1. Add any filter you want to the tcpdump command inside tcpdump.pow.
  2. For the sake of simplicity run sudo kapow server tcpdump.pow. In a production environment tcpdump should be run with the appropiate permissions but kapow can (and should) run as an unprivilieged user.
  3. In your local machine run curl http://localhost:8080/sniff/wlp2s0 | sudo wireshark -k -i - if you don't want to run Wireshark as root follow this guide: https://gist.github.com/MinaMikhailcom/0825906230cbbe478faf4d08abe9d11a
  4. Profit!
Reference in New Issue View Git Blame Copy Permalink