TShark

From Lolly's Wiki
Revision as of 07:58, 2 October 2015 by Lollypop (talk | contribs) (Die Seite wurde neu angelegt: „Kategorie:MySQL Kategorie:Security =TShark= [https://www.wireshark.org/docs/wsug_html_chunked/AppToolstshark.html TShark is the terminal based wiresha…“)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

Kategorie:MySQL Kategorie:Security

TShark

TShark is the terminal based wireshark.

The ultimate tool to sniff network traffic when you have no X. It analyzes the traffic as wireshark does. Great tool!

MySQL traffic

The little awk-magic selects only pakets which are from our ethernet address.

# IFACE=eth0 ; tshark -i ${IFACE} -aduration:60 -d tcp.port==3306,mysql -R "eth.addr eq $(ip link show ${IFACE} | awk '$1 ~ /link\/ether/{print $2}')" -T fields -e mysql.query 'port 3306'