Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- tcpdump -A -i wlan0 'tcp port 80 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)'
- tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
- listening on wlan0, link-type EN10MB (Ethernet), capture size 65535 bytes
- 23:18:22.056142 IP 192.168.0.150.48332 > static.88-198-16-186.clients.your-server.de.www: Flags [P.], seq 1535642909:1535643390, ack 439153789, win 229, options [nop,nop,TS val 23715879 ecr 355843572], length 481
- ..,.}...........X......P[.
- .i.'.5..GET /main.php HTTP/1.1
- Host: xn----htbjeegjcrba7f8c2c.xn--p1ai
- Connection: keep-alive
- Cache-Control: max-age=0
- User-Agent: Mozilla/5.0 (X11; Linux i686) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.112 Safari/534.30
- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
- Accept-Encoding: gzip,deflate,sdch
- Accept-Language: en-US,en;q=0.8
- Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
- Cookie: SN4de5f11a97506=15b2832242449e8d73fa72f668861a82
- 23:18:22.227783 IP static.88-198-16-186.clients.your-server.de.www > 192.168.0.150.48332: Flags [P.], seq 1:558, ack 481, win 54, options [nop,nop,TS val 355843741 ecr 23715879], length 557
- E .aJ.@.8...X........P...,.}[......6.......
- .5...i.'HTTP/1.1 200 OK
- Date: Wed, 06 Jul 2011 19:18:23 GMT
- Server: Apache/1.3.42 (Unix) mod_gzip/1.3.26.1a mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 DAV/1.0.3 mod_ssl/2.8.31 OpenSSL/0.9.8e-fips-rhel5
- Cache-Control: private, must-revalidate
- P3P: CP="NOI NID ADMa OUR IND UNI COM NAV"
- X-Powered-By: PHP/5.2.17
- Set-Cookie: SN4de5f11a97506=15b2832242449e8d73fa72f668861a82; path=/
- Keep-Alive: timeout=5, max=100
- Connection: Keep-Alive
- Transfer-Encoding: chunked
- Content-Type: text/html; charset=UTF-8
- 2
- 35
- 0
- 23:18:22.345612 IP 192.168.0.150.48332 > static.88-198-16-186.clients.your-server.de.www: Flags [P.], seq 481:879, ack 558, win 246, options [nop,nop,TS val 23715952 ecr 355843741], length 398
- E.....@.@.!\....X......P[....,....... .....
- .i.p.5..GET /favicon.ico HTTP/1.1
- Host: xn----htbjeegjcrba7f8c2c.xn--p1ai
- Connection: keep-alive
- Accept: */*
- User-Agent: Mozilla/5.0 (X11; Linux i686) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.112 Safari/534.30
- Accept-Encoding: gzip,deflate,sdch
- Accept-Language: en-US,en;q=0.8
- Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
- Cookie: SN4de5f11a97506=15b2832242449e8d73fa72f668861a82
- 23:18:22.517239 IP static.88-198-16-186.clients.your-server.de.www > 192.168.0.150.48332: Flags [P.], seq 558:1121, ack 879, win 62, options [nop,nop,TS val 355844030 ecr 23715952], length 563
- E .gJ.@.8...X........P...,..[......>.y.....
- .5...i.pHTTP/1.1 404 Not Found
- Date: Wed, 06 Jul 2011 19:18:23 GMT
- Server: Apache/1.3.42 (Unix) mod_gzip/1.3.26.1a mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 DAV/1.0.3 mod_ssl/2.8.31 OpenSSL/0.9.8e-fips-rhel5
- Cache-Control: private, must-revalidate
- P3P: CP="NOI NID ADMa OUR IND UNI COM NAV"
- X-Powered-By: PHP/5.2.17
- Set-Cookie: SN4de5f11a97506=15b2832242449e8d73fa72f668861a82; path=/
- Keep-Alive: timeout=5, max=98
- Connection: Keep-Alive
- Transfer-Encoding: chunked
- Content-Type: text/html; charset=UTF-8
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement