Linux/Ubuntu: sniff tcp communications (binary output)

PHOTO

Sun Aug 28 2022 22:16:57 GMT+0000 (Coordinated Universal Time)

Saved by @marcopinero #bash

$ sudo apt-get install tcpflow
$ sudo tcpflow -p -c -i <netinterface> port <portnum>

# Example: tcpflow -p -c -i eth0 port 80

TCPFlow tool help me to sniff tcp communication on any port (source or target). It could be combined with "grep" to filter text while running. <netinterface> is the network interface's name, it could by "any" or name like "eth0", "wlan1" etc. <portnum> is the port number to be tracked (it does not matter if is source or target port).

Save snippets that work from anywhere online with our extensions

Available in the Chrome Web Store

Get Firefox Add-on

Get VS Code extension

Comments

More like this

Networking Collection

@marcopinero

Windows: 7/Vista/XP/2K tcp tunneling nbtscan: Multiple-OS command line utility: NETBIOS nameserver scanner Linux: Simulating slow internet connection Linux/Ubuntu: Changing gateway address and flush/restart network interface Linux: SSH Tunnel to local machines. Linux: Get my external ip address Linux/Ubuntu: Enable/Disable ping response Linux: Cron: Reset neorouter Linux/Ubuntu: sniff tcp communications (binary output) Liunux/Ubuntu: get a list of apps that are consuming bandwidth Linux/Ubuntu: iptables: block external outgoing ip address Linux/Ubuntu: How to setup pptp vpn server Linux: NGINX: Setup alias Linux: ssh without password Linux: NGINX: Proxy reverse Linux: one way remote sync using unison and ssh Linux: Open ssh port access using a combination (knocking technique) Linux: ssh login for only one user Linux/Ubuntu: Server: Configuring proxies Linux/Ubuntu: Share folder with Windows (via samba) Linux: Get all my local IP addresses (IPv4) Linux/Ubuntu: list ufw firewall rules without enabling it Linux/Ubuntu: Connect windows to shared folder as guest Linux/Ubuntu: Avoid connection from specific ip address without using iptables Linux: Telegram: Send telegram message to channel when user logged via ssh Linux/Ubuntu: nginx: Configuration to send request to another server by servername Modbus/ModPoll Linux/Neorouter: watchdog for neorouter connection Linux: libgdcm: Send dicom images to PACS using gdcmscu. Ubuntu: mount full rw cifs share Linux/Ubuntu: NGINX: Basic authentication access Linux/Ubuntu: Mosquitto: Enable mqtt service Linux: Detect if port is closed from command line Linux: Get internet content from command line using wget Mac OSX: Port redirection Windows 10: Port redirection/Tunneling Python: Telegram Bot API: Ask/Answer question PHP: Post a XML File using PHP without cURL Nginx: Call php without extension PHP: Send compressed data to be used on Javascript (i.e. Json data) PHP: Download file and detect user connection aborted Linux/Proxmox: Enable /dev/net/tun for hamachi PHP: using curl for get and post NGINX: Creating .htpasswd

Linux Collection

@marcopinero

Linux: Free unused cache memory Linux: mounting VirtualBox VDI disk using qemu nbtscan: Multiple-OS command line utility: NETBIOS nameserver scanner Linux: Saving one or more webpages to pdf file Linux: Creating iso image from disk using one line bash command Linux/PostgreSQL: Getting service uptime Linux: Simulating slow internet connection Linux/Ubuntu: Changing gateway address and flush/restart network interface Linux: SSH Tunnel to local machines. Linux: Fast find text in specific files using wild cards Linux: Merging two or more pdf files into one, by using ghostscript Linux: Cron command for deleting old files (older than n days) Linux: Get my external ip address Linux: Get the size of a folder Linux: Get the size of a folder Linux: Get the size of a folder Lazarus/Linux: Connect to SQLServer using ZeosLib component TZConnection Linux/Ubuntu: Get ordered list of all installed packages Linux/Ubuntu: Enable/Disable ping response Linux/DICOM: Very small DICOM Server Linux: Cron: Reset neorouter Linux/Oracle: Startup script Linux/Ubuntu: detect if CD/DVD disk ispresent and is writeable Linux/PHP: Let www-data run other commands (permission) Linux/DICOM: Create DICOM Video Linux: Apply same command for multiple files Linux/Ubuntu: sniff tcp communications (binary output) Linux: rsync: Backup remote folder into local folder Linux: Installing Conquest Dicom Server Linux: Get number of pages of PDF document via command line Linux: split file into pieces and join pieces again Linux/Ubuntu: iptables: block external incoming ip address Liunux/Ubuntu: get a list of apps that are consuming bandwidth Linux/Ubuntu: iptables: block external outgoing ip address Linux/DICOM: dcmtk: Modify data in dicom folder Linux/Docker: save/load container using tgz file (tar.gz) Linx/Ubuntu: solve problem apt-get when proxy authentication is required Docker: Clean all Linux: ImageMagick: convert first page of pdf document to small jpeg preview Linux: Convert pdf to html PostgreSQL: backup/restore remote database with pg_dump Linux/Ubuntu: How to setup pptp vpn server Linux/Xubuntu: Solve HDMI disconnection caused by non-supported resolution Linux: List all users PostgreSQL: Log all queries Linux: NGINX: Setup alias Linux: ssh without password Linux: NGINX: Proxy reverse Linux: one way remote sync using unison and ssh Linux: Deleting files keeping only lastest n-files in specific folder Linux: Open ssh port access using a combination (knocking technique) Linux: Get Memory percentages. Linux: Can not sudo, unkown user root (solution) Linux: PDF: How to control pdf file size Linux: ssh login for only one user Linux: get pid of process who launch another process Linux: PHP: Fix pm.max server reached max children Linux/Ubuntu: Server: Configuring proxies Linux: Compare two files displaying differences Sox: Managing audio recording and playing Linux: VirtualBox: Explore VDI disk without running virtualbox Linux: Get machine unique ID Linux: rsync only files earlier than N days Linux: Create Virtual Filesystem Linux/Ubuntu: Server: Add disks to lvm Python/Ubuntu: connect to sqlserver and oracle Linux/Ubuntu: Share folder with Windows (via samba) Linux: Get all my local IP addresses (IPv4) Linux/Ubuntu: list ufw firewall rules without enabling it Linux/Ubuntu: Connect windows to shared folder as guest Linux: delete tons of files from folder with one command Linux/Ubuntu: Avoid connection from specific ip address without using iptables Linux: Telegram: Send telegram message to channel when user logged via ssh Linux/Ubuntu: Create barcode from command line. Linux: PHP/Python: Install python dependencies for python scripts and run scripts form php Linux/Ubuntu: nginx: Configuration to send request to another server by servername Linux/Ubuntu: Fix Imagemagick "not authorized" exception Linux/Neorouter: watchdog for neorouter connection Linux: libgdcm: Send dicom images to PACS using gdcmscu. Ubuntu: mount full rw cifs share Linux/Ubuntu: NGINX: Basic authentication access PostgreSQL: Backup/Restore database from/to postgres docker. Linux/Ubuntu: Mosquitto: Enable mqtt service Linux/PHP: Connect php7.0 with sqlserver using pdo. Linux: Detect if port is closed from command line Linux: PHP: Run shell command without waiting for output (untested) Linux/Ubuntu: OS Installation date Linux/Ubuntu: Join pdf files from command line using pdftk Linux: Get internet content from command line using wget Linux/PHP/SQL: Ubuntu/Php/Sybase: Connecting sysbase database with php7 Linux/Ubuntu: Solve LC_ALL file not found error Linux/Ubuntu: Run window program with wine headless on server Linux/Docker: List ip addresses of all containers. Linux: sysmon script (memory usage) Linux: Firebird: Create admin user from command line Linux/Firebird: Backup/Restore database Git: Update folder linux/dfm-to-json/docker Linux/Oracle/Docker: 19c-ee Linux/Docker: SQL Server in docker Linux/PHP/Docker: Run docker command from php/web Linux/Docker: Oracle 12-ee docker Linux: Oracle: Backup using expdp Linux/PHP/NGINX: Increase timeout Lazarus/Fastreport: Install on Linux Linux/Ubuntu: fswatch: watch file changes in folder Linux/Docker: SQL Server 2019 in docker Linux/Docker: SQLServer: mssql-scripter: backup/restore Linux/Ubuntu: Enable/disable screensaver Linux: SQLServer: Detect MDF version Linux/Docker: Oracle install 19c (II) on docker FirebirdSQL: Restore/Backup Linux/NGINX: Redirect to another server/port by domain name Linux/Proxmox: Enable /dev/net/tun for hamachi Linux/Ubuntu: Create sudoer user Linux: PDF-url to text without downloading pdf file Docker: Reset logs

Bash Option Menu

#!/bin/bash
# Bash Menu Script Example

PS3='Please enter your choice: '
options=("Option 1" "Option 2" "Option 3" "Quit")
select opt in "${options[@]}"
do
    case $opt in
        "Option 1")
            echo "you chose choice 1"
            ;;
        "Option 2")
            echo "you chose choice 2"
            ;;
        "Option 3")
            echo "you chose choice $REPLY which is $opt"
            ;;
        "Quit")
            break
            ;;
        *) echo "invalid option $REPLY";;
    esac
done

#bash #powershell

Clear WSL2 Disk Space - Optimize-VHD

wsl --shutdown
diskpart
# open window Diskpart
select vdisk file="C:\WSL-Distros\…\ext4.vhdx"
attach vdisk readonly
compact vdisk
detach vdisk
exit

#bash #docker #ubuntu

Give Docker the access to display (XServer?)

xhost +local:docker

Composer install ignore platform requirements

composer install --ignore-platform-reqs

BASH - Extract Substring from File

Normal Version: 
echo 'nice12343game' | sed -n 's/nice\(.*\)game/\1/p'

Jenkins Version:
sed -n 's/.*exited with code \\(.*\\)/\\1/p' stdout

#bash #powershell

WSL2 network port forwarding script v1

# WSL2 network port forwarding script v1
#   for enable script, 'Set-ExecutionPolicy -ExecutionPolicy Bypass -Scope CurrentUser' in Powershell,
#   for delete exist rules and ports use 'delete' as parameter, for show ports use 'list' as parameter.
#   written by Daehyuk Ahn, Aug-1-2020

# Display all portproxy information
If ($Args[0] -eq "list") {
    netsh interface portproxy show v4tov4;
    exit;
} 

# If elevation needed, start new process
If (-NOT ([Security.Principal.WindowsPrincipal] [Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole]::Administrator))
{
  # Relaunch as an elevated process:
  Start-Process powershell.exe "-File",('"{0}"' -f $MyInvocation.MyCommand.Path),"$Args runas" -Verb RunAs
  exit
}

# You should modify '$Ports' for your applications 
$Ports = (22,80,443,8080)

# Check WSL ip address
wsl hostname -I | Set-Variable -Name "WSL"
$found = $WSL -match '\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}';
if (-not $found) {
  echo "WSL2 cannot be found. Terminate script.";
  exit;
}

# Remove and Create NetFireWallRule
Remove-NetFireWallRule -DisplayName 'WSL 2 Firewall Unlock';
if ($Args[0] -ne "delete") {
  New-NetFireWallRule -DisplayName 'WSL 2 Firewall Unlock' -Direction Outbound -LocalPort $Ports -Action Allow -Protocol TCP;
  New-NetFireWallRule -DisplayName 'WSL 2 Firewall Unlock' -Direction Inbound -LocalPort $Ports -Action Allow -Protocol TCP;
}

# Add each port into portproxy
$Addr = "0.0.0.0"
Foreach ($Port in $Ports) {
    iex "netsh interface portproxy delete v4tov4 listenaddress=$Addr listenport=$Port | Out-Null";
    if ($Args[0] -ne "delete") {
        iex "netsh interface portproxy add v4tov4 listenaddress=$Addr listenport=$Port connectaddress=$WSL connectport=$Port | Out-Null";
    }
}

# Display all portproxy information
netsh interface portproxy show v4tov4;

# Give user to chance to see above list when relaunched start
If ($Args[0] -eq "runas" -Or $Args[1] -eq "runas") {
  Write-Host -NoNewLine 'Press any key to close! ';
  $null = $Host.UI.RawUI.ReadKey('NoEcho,IncludeKeyDown');
}

#installation #linux #bash #wsl #github #cli

Install gh-cli (Linux)

#!/usr/bin/env bash

# install github-cli
VERSION=`curl  "https://api.github.com/repos/cli/cli/releases/latest" | grep '"tag_name"' | sed -E 's/.*"([^"]+)".*/\1/' | cut -c2-`
echo $VERSION
mkdir ~/downloads
curl -sSL https://github.com/cli/cli/releases/download/v${VERSION}/gh_${VERSION}_linux_amd64.tar.gz -o ~/downloads/gh_${VERSION}_linux_amd64.tar.gz
cd ~/downloads
tar xvf gh_${VERSION}_linux_amd64.tar.gz
sudo cp gh_${VERSION}_linux_amd64/bin/gh /usr/local/bin/
gh version
sudo cp -r ~/downloads/gh_${VERSION}_linux_amd64/share/man/man1/* /usr/share/man/man1/
# man gh
gh auth login

rm -r ~/downloads

h5bp Quick Start

npx create-html5-boilerplate new-site

#bash #ionic #angular #capacitor #qrcode #reader #typescript #javascript #html

html-qrcode reader

...

<ion-content class="scanner-hide" *ngIf="scanStatus == false">
  <div class="padding-container center">
    <ion-button color="primary" (click)="scanCode()"><ion-icon slot="start" name="qr-code-outline"></ion-icon> Scanear Código</ion-button> <!-- Botão que chama a função do scanner-->
  </div>
  <ion-card>
    <ion-card-content><h1>{{ result }}</h1></ion-card-content> <!-- mostra o resultado do scan -->
  </ion-card>
  
  <div class="scanner-ui"> <!-- Quando estamos a scanear, chama esta classe-->
    ...Scanner Interface
    </div>
    <div class="ad-spot"></div>
</ion-content>

Introduction | Cronhub Docs

 https://cronhub.io/ping/1f5e3410-254c-11e8-b61d-55875966d031

Archive all public repositories on my GitHub account

# WARNING: This will LOCK ALL PUBLIC REPOSITORIES ON YOUR GITHUB ACCOUNT
#
# dependencies hub and jq
# - hub: hub.github.com
# - jq: https://stedolan.github.io/jq/
#
# A better alternative would be to pipe the repos into a temporary file:
# $ hub api --paginate users/amingilani/repos | jq -r '.[]."full_name"' > repos.txt
# Then manually remove your active repositories
# And archive the remaining:
# $ cat repos.txt | xargs -I {} -n 1 hub api -X PATCH -F archived=true /repos/{}
#
# Anyways, to archive all public repositories in your GitHub account:
#
hub api --paginate users/amingilani/repos | jq -r '.[]."full_name"' | xargs -I {} -n 1 hub api -X PATCH -F archived=true /repos/{}

How to find the path of the local git repository when I am possibly in a subdirectory - Stack Overflow

git rev-parse --show-toplevel

could be enough if executed within a git repo.
From git rev-parse man page:

--show-toplevel

Mounting USB drives in Windows Subsystem for Linux

mkdir /mnt/f
mount -t drvfs f: /mnt/f

Linux Signals help

https://www.computerhope.com/unix/signals.htm

POWERSHELL ACTIVE DIRECTORY

Restricted : aucun script ne peut être exécuté.

AllSigned : seuls les scripts signés peuvent être exécutés.

RemoteSigned : les scripts téléchargés depuis Internet doivent être signés pour être exécutés. 
	Les scripts présents sur votre poste de travail ne sont pas concernés et peuvent être exécutés.

Unrestricted : pas de restrictions. Les scripts peuvent être exécutés.

connaitre le mode d'execution
	Get-ExecutionPolicy
   
changer le mode d'execution
	Set-ExecutionPolicy <mode>

cree un utilisateur 
	New-ADUser 
		-Name <login> 
		-SamAccountName <login> 
		-UserPrincipaleName <mail> 
		-AccountPassword (ConvertTo-SecureString -AsPlainText <mdp> -Force ) 
		-PasswordNeverExpires $true
		-CannotChangePassword $true

activer Utilisateur
	Enable-ADAccount <samaccountname>
	Desable-ADAccount <samaccountname>

lancer script 
	powershell .\PATH

rechercher des utilisateur
	Get-ADUser -Filter *
	Get-ADUser -Filter * | select samAccountName, Name, UserPrincipalName | Export-Csv UserAdUTF8.csv -Encoding UTF8


cree un groupe 
	New-ADGroup $groupe -GroupScope Global

inserer des utilisateur dans un groupe
	Add-ADGroupMember -identity $groupe -Members <samAccountName>

recherche groupe
	Get-ADGroup -Filter *

afficher les utilisateur dans un groupe
	 Get-ADGroupMember $group | Select-Object name  | Export-Csv SEC.csv -Encoding UTF8

ide for powershell
	Notepad.exe

Browse more snippets >>