大多数的网络嗅探器也能够解码和解密特定的数据包内容,这能够帮助您研究一个已知协议的内容。
Most of the network sniffers will also decode and decipher specific packet contents, which will help you when you want to study the content of a recognized protocol.
tcpdump工具是一个比较老的工具,它从网上“嗅探”网络数据包,打印到stdout或记录在一个文件中。
The tcpdump tool is an older tool that "sniffs" network packets from a network and either prints them to stdout or logs them to a file.
包嗅探非常出色,但如您所见,Snort的包嗅探模式假设您一直关注着显示器,急切地查看数千行网络数据。
Packet sniffing is great, but as you've seen, Snort's packet sniffing mode assumes you're hunched over your display, eagerly watching as thousands of lines of network data flies by.
应用推荐