转载请注明:@小五义:http://www.cnblogs/xiaowuyi

利用sniff命令进行简单的嗅探,可以抓到一些简单的包。当不指定接口时,将对每一个接口进行嗅探,当指定接口时,仅对该接口进行。

如;

>>> sniff(filter="icmp and host 61.135.169.125",count=)

结果:

<Sniffed: TCP:0 UDP:0 ICMP:0 Other:0>

再比如对ppp0端口的嗅探:

>>> sniff(iface="ppp0",prn=lambda x:x.summary())

此时浏览一下百度,结果如下:

IP / UDP 27.214.219.76:53144 > 122.225.83.67:http / Raw
IP / UDP / DNS Qry "suggestion.baidu.com."

IP / UDP / DNS Qry "suggestion.baidu.com."

IP / UDP / DNS Ans "suggestion.a.shifen.com."

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http S

IP / UDP / DNS Ans "suggestion.a.shifen.com."

IP / ICMP / IPerror / UDPerror / DNS Ans "suggestion.a.shifen.com."

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 SA

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http A

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http PA / Raw

IP / UDP 122.225.83.67:http > 27.214.219.76:53144 / Raw

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 A

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 PA / Raw

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http A

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 PA / Raw

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http A

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http PA / Raw

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 A

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 PA / Raw

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http A

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 PA / Raw

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http A

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http S

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 SA

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http PA / Raw

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 PA / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 A / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 61.135.169.125:http > 27.214.219.76:45639 PA / Raw

IP / TCP 27.214.219.76:45639 > 61.135.169.125:http A

IP / TCP 27.214.219.76:55193 > 60.55.35.47:http S

IP / UDP / DNS Qry "t11.baidu.com."

IP / UDP / DNS Qry "t12.baidu.com."

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http S

IP / UDP / DNS Ans "image.jomodns.com."

IP / TCP 27.214.219.76:49797 > 119.188.9.119:http S

IP / TCP 27.214.219.76:49798 > 119.188.9.119:http S

IP / TCP 27.214.219.76:49799 > 119.188.9.119:http S

IP / UDP / DNS Ans "image.jomodns.com."

IP / TCP 27.214.219.76:39103 > 119.188.9.118:http S

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 SA

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.119:http > 27.214.219.76:49797 SA

IP / TCP 27.214.219.76:49797 > 119.188.9.119:http A

IP / TCP 119.188.9.119:http > 27.214.219.76:49798 SA

IP / TCP 27.214.219.76:49798 > 119.188.9.119:http A

IP / TCP 119.188.9.119:http > 27.214.219.76:49799 SA

IP / TCP 27.214.219.76:49799 > 119.188.9.119:http A

IP / TCP 60.55.35.47:http > 27.214.219.76:55193 SA

IP / TCP 27.214.219.76:55193 > 60.55.35.47:http A

IP / TCP 27.214.219.76:55193 > 60.55.35.47:http PA / Raw

IP / TCP 119.188.9.118:http > 27.214.219.76:39103 SA

IP / TCP 27.214.219.76:39103 > 119.188.9.118:http A

IP / TCP 60.55.35.47:http > 27.214.219.76:55193 A

IP / TCP 60.55.35.47:http > 27.214.219.76:55193 PA / Raw

IP / TCP 27.214.219.76:55193 > 60.55.35.47:http A

IP / TCP 27.214.219.76:55193 > 60.55.35.47:http PA / Raw

IP / TCP 27.214.219.76:49797 > 119.188.9.119:http PA / Raw

IP / TCP 27.214.219.76:49798 > 119.188.9.119:http PA / Raw

IP / TCP 27.214.219.76:49799 > 119.188.9.119:http PA / Raw

IP / TCP 27.214.219.76:39103 > 119.188.9.118:http PA / Raw

IP / TCP 27.214.219.76:38864 > 61.135.169.105:http S

IP / UDP / DNS Qry "a.baidu.com."

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http PA / Raw

IP / TCP 27.214.219.76:59062 > 119.188.9.40:http S

IP / TCP 27.214.219.76:59063 > 119.188.9.40:http S

IP / TCP 119.188.9.119:http > 27.214.219.76:49797 A

IP / TCP 119.188.9.119:http > 27.214.219.76:49797 PA / Raw

IP / TCP 27.214.219.76:49797 > 119.188.9.119:http A

IP / TCP 27.214.219.76:38867 > 61.135.169.105:http S

IP / TCP 119.188.9.119:http > 27.214.219.76:49798 A

IP / TCP 119.188.9.119:http > 27.214.219.76:49798 PA / Raw

IP / TCP 27.214.219.76:49798 > 119.188.9.119:http A

IP / TCP 119.188.9.119:http > 27.214.219.76:49799 A

IP / TCP 119.188.9.119:http > 27.214.219.76:49799 PA / Raw

IP / TCP 27.214.219.76:49799 > 119.188.9.119:http A

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http PA / Raw

IP / TCP 27.214.219.76:50355 > 61.135.185.194:http S

IP / UDP / DNS Qry "api.share.baidu.com."

IP / TCP 119.188.9.118:http > 27.214.219.76:39103 A

IP / TCP 119.188.9.118:http > 27.214.219.76:39103 PA / Raw

IP / TCP 27.214.219.76:39103 > 119.188.9.118:http A

IP / UDP / DNS Ans "asp.e.shifen.com."

IP / TCP 60.55.35.47:http > 27.214.219.76:55193 PA / Raw

IP / TCP 27.214.219.76:53605 > 123.125.114.38:http S

IP / TCP 27.214.219.76:53606 > 123.125.114.38:http S

IP / TCP 27.214.219.76:55193 > 60.55.35.47:http FA

IP / TCP 61.135.169.105:http > 27.214.219.76:38864 SA

IP / TCP 27.214.219.76:38864 > 61.135.169.105:http A

IP / TCP 27.214.219.76:38864 > 61.135.169.105:http PA / Raw

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 PA / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http PA / Raw

IP / TCP 119.188.9.40:http > 27.214.219.76:59062 SA

IP / TCP 27.214.219.76:59062 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59063 SA

IP / TCP 27.214.219.76:59063 > 119.188.9.40:http A

IP / TCP 61.135.169.105:http > 27.214.219.76:38867 SA

IP / TCP 27.214.219.76:38867 > 61.135.169.105:http A

IP / UDP / DNS Ans "api.share.n.shifen.com."

IP / TCP 27.214.219.76:47655 > 61.135.162.115:http S

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 A

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 PA / Raw

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http A

IP / TCP 123.125.114.101:http > 27.214.219.76:37968 PA / Raw

IP / TCP 27.214.219.76:37968 > 123.125.114.101:http A

IP / TCP 61.135.185.194:http > 27.214.219.76:50355 SA

IP / TCP 27.214.219.76:50355 > 61.135.185.194:http A

IP / TCP 27.214.219.76:50355 > 61.135.185.194:http PA / Raw

IP / TCP 123.125.114.38:http > 27.214.219.76:53605 SA

IP / TCP 27.214.219.76:53605 > 123.125.114.38:http A

IP / TCP 27.214.219.76:53605 > 123.125.114.38:http PA / Raw

IP / TCP 123.125.114.38:http > 27.214.219.76:53606 SA

IP / TCP 27.214.219.76:53606 > 123.125.114.38:http A

IP / TCP 61.135.169.105:http > 27.214.219.76:38864 A

IP / TCP 61.135.169.105:http > 27.214.219.76:38864 PA / Raw

IP / TCP 27.214.219.76:38864 > 61.135.169.105:http A

IP / TCP 61.135.169.105:http > 27.214.219.76:38864 PA / Raw

IP / TCP 27.214.219.76:38864 > 61.135.169.105:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 PA / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 61.135.162.115:http > 27.214.219.76:47655 SA

IP / TCP 27.214.219.76:47655 > 61.135.162.115:http A

IP / TCP 27.214.219.76:47655 > 61.135.162.115:http PA / Raw

IP / TCP 60.55.35.47:http > 27.214.219.76:55193 FA

IP / TCP 27.214.219.76:55193 > 60.55.35.47:http A

IP / TCP 61.135.185.194:http > 27.214.219.76:50355 A

IP / TCP 61.135.185.194:http > 27.214.219.76:50355 PA / Raw

IP / TCP 27.214.219.76:50355 > 61.135.185.194:http A

IP / TCP 123.125.114.38:http > 27.214.219.76:53605 A

IP / TCP 123.125.114.38:http > 27.214.219.76:53605 PA / Raw

IP / TCP 27.214.219.76:53605 > 123.125.114.38:http A

IP / TCP 61.135.162.115:http > 27.214.219.76:47655 A

IP / TCP 61.135.162.115:http > 27.214.219.76:47655 PA / Raw

IP / TCP 27.214.219.76:47655 > 61.135.162.115:http A

IP / UDP / DNS Qry "sclick.baidu.com."

IP / UDP / DNS Qry "c.baidu.com."

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http PA / Raw

IP / UDP / DNS Ans "s.a.shifen.com."

IP / TCP 27.214.219.76:47154 > 123.125.115.95:http S

IP / UDP / DNS Ans "c.e.shifen.com."

IP / TCP 27.214.219.76:56976 > 123.125.114.64:http S

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A / Raw

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 PA / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

IP / TCP 27.214.219.76:56977 > 123.125.114.64:http S

IP / TCP 27.214.219.76:47157 > 123.125.115.95:http S

IP / TCP 123.125.115.95:http > 27.214.219.76:47154 SA

IP / TCP 27.214.219.76:47154 > 123.125.115.95:http A

IP / TCP 27.214.219.76:47154 > 123.125.115.95:http PA / Raw

IP / TCP 123.125.114.64:http > 27.214.219.76:56976 SA

IP / TCP 27.214.219.76:56976 > 123.125.114.64:http A

IP / TCP 27.214.219.76:56976 > 123.125.114.64:http PA / Raw

IP / TCP 123.125.114.64:http > 27.214.219.76:56977 SA

IP / TCP 27.214.219.76:56977 > 123.125.114.64:http A

IP / TCP 123.125.115.95:http > 27.214.219.76:47157 SA

IP / TCP 27.214.219.76:47157 > 123.125.115.95:http A

IP / TCP 123.125.115.95:http > 27.214.219.76:47154 A

IP / TCP 123.125.115.95:http > 27.214.219.76:47154 PA / Raw

IP / TCP 27.214.219.76:47154 > 123.125.115.95:http A

IP / TCP 123.125.115.95:http > 27.214.219.76:47154 FA

IP / TCP 27.214.219.76:47154 > 123.125.115.95:http FA

IP / TCP 123.125.114.64:http > 27.214.219.76:56976 A

IP / TCP 123.125.114.64:http > 27.214.219.76:56976 PA / Raw

IP / TCP 27.214.219.76:56976 > 123.125.114.64:http A

IP / TCP 123.125.114.64:http > 27.214.219.76:56976 FA

IP / TCP 27.214.219.76:56976 > 123.125.114.64:http FA

IP / UDP / DNS Qry "trust.baidu.com."

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http PA / Raw

IP / TCP 123.125.115.95:http > 27.214.219.76:47154 A

IP / UDP / DNS Ans "trust.e.shifen.com."

IP / TCP 123.125.114.64:http > 27.214.219.76:56976 A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 A

IP / TCP 119.188.9.40:http > 27.214.219.76:59056 PA / Raw

IP / TCP 27.214.219.76:59056 > 119.188.9.40:http A

^C<Sniffed: TCP:208 UDP:20 ICMP:1 Other:0>

也要以用show()来显示:

>>> sniff(iface="ppp0",prn=lambda x:x.show())

部分结果:

###[ IP ]###
  version= 4L

ihl= 5L

tos= 0x0

len= 40

id= 52068

flags= DF

frag= 0L

ttl= 64

proto= tcp

chksum= 0x8151

src= 27.214.219.76

dst= 61.135.185.112

\options\

###[ TCP ]###

sport= 59617

dport= http

seq= 3932617191L

ack= 411565738

dataofs= 5L

reserved= 0L

flags= FA

window= 182

chksum= 0xee34

urgptr= 0

options= {}

^C<Sniffed: TCP:1 UDP:0 ICMP:0 Other:0>

scapy学习笔记(4)简单的sniffing 嗅探的更多相关文章

  1. JSP学习笔记(三):简单的Tomcat Web服务器

    注意:每次对Tomcat配置文件进行修改后,必须重启Tomcat 在E盘的DATA文件夹中创建TomcatDemo文件夹,并将Tomcat安装路径下的webapps/ROOT中的WEB-INF文件夹复 ...

  2. JAVA WEB学习笔记(三):简单的基于Tomcat的Web页面

    注意:每次对Tomcat配置文件进行修改后,必须重启Tomcat 在E盘的DATA文件夹中创建TomcatDemo文件夹,并将Tomcat安装路径下的webapps/ROOT中的WEB-INF文件夹复 ...

  3. Spark学习笔记0——简单了解和技术架构

    目录 Spark学习笔记0--简单了解和技术架构 什么是Spark 技术架构和软件栈 Spark Core Spark SQL Spark Streaming MLlib GraphX 集群管理器 受 ...

  4. Html学习笔记(二) 简单标签

    标签的重点 标签的用途 标签在浏览器中的默认样式 <body>标签: 在网页上显示的内容 <p>标签: 添加段落 <hx>标签: 添加标题 标签一共有6个,h1.h ...

  5. Netty学习笔记(六) 简单的聊天室功能之WebSocket客户端开发实例

    在之前的Netty相关学习笔记中,学习了如何去实现聊天室的服务段,这里我们来实现聊天室的客户端,聊天室的客户端使用的是Html5和WebSocket实现,下面我们继续学习. 创建客户端 接着第五个笔记 ...

  6. scapy学习笔记(3)发送包,SYN及TCP traceroute 扫描

    转载请注明:@小五义:http://www.cnblogs/xiaowuyi 在安装完scapy(前两篇笔记有介绍)后,linux环境下,执行sudo scapy运行scapy. 一.简单的发送包 1 ...

  7. scapy学习笔记(3)

    转自:@小五义:http://www.cnblogs/xiaowuyi 在安装完scapy(前两篇笔记有介绍)后,linux环境下,执行sudo scapy运行scapy. 一.简单的发送包 1.se ...

  8. Java设计模式学习笔记(二) 简单工厂模式

    前言 本篇是设计模式学习笔记的其中一篇文章,如对其他模式有兴趣,可从该地址查找设计模式学习笔记汇总地址 正文开始... 1. 简介 简单工厂模式不属于GoF23中设计模式之一,但在软件开发中应用也较为 ...

  9. CSS学习笔记09 简单理解BFC

    引子 在讲BFC之前,先来看看一个例子 <!DOCTYPE html> <html lang="en"> <head> <meta cha ...

随机推荐

  1. 使用PHPExcel实现数据批量导入到数据库

    此例子只使用execel2003的.xls文档,若使用的是其他版本,可以保存格式为“Execel 97-2003 工作簿(*.xls)”即.xls文件类型即可! 功能说明:只能上传Excel2003类 ...

  2. MongoDB数据库在centos下的操作

    简介 MongoDB是一个基于分布式文件存储的数据库.由C++语言编写.旨在为WEB应用提供可扩展的高性能数据存储解决方案. MongoDB是一个介于关系数据库和非关系数据库之间的产品,是非关系数据库 ...

  3. 第二十八天- tcp下的粘包和解决方案

    1.什么是粘包 写在前面:只有TCP有粘包现象,UDP永远不会粘包 1.TCP下的粘包 因为TCP协议是面向连接.面向流的,收发两端(客户端和服务器端)都要有成对的socket,因此,发送端为了将多个 ...

  4. Js 中对 Json 数组的常用操作

    我们首先定义一个json数组对象如下: var persons = [ {name: "tina", age: 14}, {name: "timo", age: ...

  5. Nginx的防爬虫优化

    我们可以根据客户端的 user-agents 首部字段来阻止指定的爬虫爬取我们的网站: 虚拟主机配置如下:(红色标记为添加或者修改内容) [root@Nginx www_date]# cat bria ...

  6. Android studio button 按钮 四种绑定事件的方法

    package com.geli_2.sujie.sujiegeili2testbutton; import android.os.Bundle; import android.support.v7. ...

  7. Expo大作战(十四)--expo中消息推送的实现

    简要:本系列文章讲会对expo进行全面的介绍,本人从2017年6月份接触expo以来,对expo的研究断断续续,一路走来将近10个月,废话不多说,接下来你看到内容,讲全部来与官网 我猜去全部机翻+个人 ...

  8. InteliiJ IDEA的安装配置与简单使用

    小Alan前段时间一直在家里搬砖,已经很久没有接触技术了,从今天开始重拾技术,工欲善其事,必先利其器,以前在做Java开发的时候最常用的IDE就是Eclipse莫属了,不过随着岁月的流逝,在2016年 ...

  9. 如何使用 Packer 在 Azure 中创建 Windows 虚拟机映像

    Azure 中的每个虚拟机 (VM) 都是基于定义 Windows 分发和操作系统版本的映像创建的. 映像可以包括预安装的应用程序和配置. Azure 应用商店为最常见的操作系统和应用程序环境提供了许 ...

  10. rsync 数据备份+cron+mailx案例

    大家都知道数据非常重要的,需要经常备份,如果备份了,但无法恢复还原,那就证明你备份的很失败,所有当我们备份了数据需要检查是否备份完整,是否可用可恢复.以下为一个企业案例: 某公司里有一台Web服务器, ...