June 2020
Intermediate to advanced
423 pages
7h 58m
Chinese
Content preview from Kali Linux学习手册
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
网络安全测试基础
|
75
因为每个系统都可以充当协议分析器。需要我们做的只是知道如何抓取数据
帧,然后查看其中正在发生的事情。
tcpdump
虽然其他操作系统也有数据包捕获程序,比如
Solaris
系统有
snoop
,但是现
在实际中普遍采用的数据包捕获程序,特别是在
Linux
系统上,而且你只能
通过命令行访问,那么就是
tcpdump
。稍后我们会介绍一些类似功能的
GUI
程序,但是学习
tcpdump
的价值更大。你不能保证总是使用带完整桌面环境
的
GUI
程序。在很多情况下,你将只有一个控制台或者只能运行命令行程序
的
SSH
会话。最终,
tcpdump
会成为你的好帮手。比如,我可以用它来验证
之前的
SIP
测试示例中使用的协议实际上只有
UDP
而没有使用
TCP
。它对于
没有其他方式告诉你程序中正在发生的情况非常有价值。
在开始讨论选项之前,我们先看一下
tcpdump
的输出。通过观察输出结果来
了解正在发生的事情需要用户逐渐适应。在没有设定任何选项的情况下运行
tcpdump
时,我们会得到数据包的简短摘要。示例
2-10
是
tcpdump
输出示例。
示例
2-10
:
tcpdump
输出结果
10:26:26.543550 IP binkley.lan.57137 > testwifi.here.domain: 32636+ PTR?
c.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.f.f.ip6.arpa. (90)
10:26:26.555133 IP testwifi.here.domain ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.