Jump to content
Hak5 Forums

Lemni

Members
  • Content count

    1
  • Joined

  • Last visited

About Lemni

  • Rank
    Newbie
  1. Wireshark SSH Tunnel

    You can use tcpdump du save data to a file and read it in real time in your distant server Let's say that you have configured sshfs and it's working Steps : On the LanTurtle runthe following command, you can replace "port 80" by any valid filter tcpdump -i eth0 -U -w /sshfs/pcapFile "port 80" On your server use wireshark with a Pipe (cf : https://wiki.wireshark.org/CaptureSetup/Pipes ) mkfifo /tmp/sharkfin wireshark -k -i /tmp/sharkfin & tail -f -n +1 /pathToSshfs/pcapFile > /tmp/sharkfin & If you don't want to use sshfs you can also use something like this : echo "tcpdump -i eth0 -U -s0 -w - \"not port 22\" 2> /dev/null | ssh -p 22 [email protected]$host \"touch /path/to/file && cat - > /path/to/file\"" | at now #Or execute the command direclty without the echo | at now
×