怎么用wireshark抓包工具看tcp 如何用wireshark对tcp进行抓包
\u6293\u5305\u8f6f\u4ef6wireshark\u600e\u4e48\u75281
\u627e\u5230\u7535\u8111\u4e0a\u7684Wireshark\u8f6f\u4ef6\uff0c\u70b9\u51fb\u542f\u52a8\uff1a
2
\u5728\u4e3b\u9875\u9762\uff0c\u53ef\u4ee5\u770b\u5982\u56fe\u3002\u5148\u9009\u62e9\u201cLocal Area Connection\u201d\uff0c\u518d\u9009\u62e9Start\uff0c\u8fdb\u884c\u542f\u52a8\uff1a
3
\u53ef\u4ee5\u770b\u5230\u8f6f\u4ef6\u5df2\u7ecf\u542f\u52a8\uff0c\u70b9\u51fb\u7ea2\u8272\u6309\u94ae\u53ef\u4ee5stop\uff1a
4
\u5982\u679c\u53ea\u60f3\u770bhttp\u7684\u5305\uff0c\u5728\u8f93\u5165\u6846\u91cc\u8f93\u5165http\u540e\uff0c\u70b9\u51fbapply\uff1a
5
\u53ef\u4ee5\u770b\u5230\u534f\u8bae\u5168\u90e8\u90fd\u662fhttp\u4e86\uff1a
6
\u5982\u679c\u60f3\u8981\u91cd\u65b0\u68c0\u6d4b\uff0c\u67e5\u770b\u5305\u7684\u53d1\u9001\u60c5\u51b5\uff0c\u70b9\u51fb\u6b64\u6309\u94ae\u53ef\u4ee5\u9009\u62e9\u91cd\u65b0\u542f\u52a8\u76d1\u6d4b\uff1a
7
\u53ef\u4ee5\u770b\u5230\u91cd\u542f\u540e\u7684\u53d1\u5305\u60c5\u51b5\uff1a
8
\u627e\u5230\u4f60\u60f3\u8981\u76d1\u6d4b\u7684\u90a3\u4e2a\u5305\uff0c\u53f3\u952e\u9009\u62e9\u201cFollow TCP stream
\u8fd9\u4e2a\u95ee\u9898\u6bd4\u8f83\u7b80\u5355\u5c31\u53ef\u4ee5\u5b9e\u73b0\uff0c\u9996\u5148\uff0c\u4f60\u8981\u5148\u5728\u4ea4\u6362\u673a\u4e0a\u955c\u50cf\u51fa\u6765\u4e00\u7ec4\u4f60\u9700\u8981\u76d1\u63a7\u7684\u6570\u636e\u3002
\u7136\u540e\uff0c\u6253\u5f00wireshark\uff0c\u9009\u62e9\u5217\u51fa\u6293\u5305\u63a5\u53e3\uff0c\u9009\u62e9\u8981\u6293\u5305\u7684\u63a5\u53e3\uff0c
\u8fd9\u65f6\u5019\u522b\u70b9\u5f00\u59cb\uff0c\u70b9\u5012\u6570\u7b2c\u4e8c\u4e2a\u6309\u94ae\uff0c\u3010\u9009\u9879\u3011\u3002
\u5728\u51fa\u6765\u7684\u7a97\u53e3\u91cc\u9762\uff0c\u53cc\u51fb\u4f60\u521a\u624d\u9009\u4e2d\u63a5\u53e3\uff0c\u53c8\u5f39\u51fa\u4e00\u4e2a\u7a97\u53e3\uff0c
\u8fd9\u65f6\u5019\uff0c\u5728\u6700\u4e0b\u9762\u586b\u4e0a\u8fc7\u6ee4\u6761\u4ef6\u3010tcp\u3011\uff0c
\u70b9\u51fb\u3010\u786e\u5b9a\u3011\u3002
\u7136\u540e\u70b9\u51fb\u4e0b\u9762\u7684\u3010\u5f00\u59cb\u3011\uff0c
\u5c31\u53ef\u4ee5\u4e86\uff0c\u6293\u51fa\u6765\u7684\u5305\u5168\u662ftcp\u7684\u3002
\u5982\u679c\u6293\u4e4b\u524d\uff0c\u4f60\u6ca1\u8fc7\u6ee4\uff0c\u5df2\u7ecf\u628a\u6240\u6709\u7684\u5305\u90fd\u6293\u51fa\u6765\u4e86\uff0c
\u8fd9\u65f6\u5019\uff0c\u628a\u6570\u636e\u5305\u6253\u5f00\uff0c\u5728\u6700\u4e0a\u9762\u7684\u8fc7\u6ee4\u6761\u4ef6\u91cc\u9762\u8f93\u5165tcp\uff0c\u5c31\u53ef\u4ee5\u4e86\u3002
\u8fc7\u6ee4\u6761\u4ef6\u6709\u5f88\u591a\u547d\u4ee4\u683c\u5f0f\uff0c\u591a\u8bb0\u4f4f\u51e0\u4e2a\u7ecf\u5e38\u7528\u7684\u5c31\u53ef\u4ee5\u4e86\u3002
在主页面,可以看如图。先选择“Local Area Connection”,再选择Start,进行启动:
可以看到软件已经启动,点击红色按钮可以stop:
如果只想看http的包,在输入框里输入http后,点击apply:
可以看到协议全部都是http了:
如果想要重新检测,查看包的发送情况,点击此按钮可以选择重新启动监测:
可以看到重启后的发包情况:
找到你想要监测的那个包,右键选择“Follow TCP stream”:
可以看到包里面的详细信息:
绛旓細wireshark 寮濮鎶撳寘 寮濮嬬晫闈 wireshark鏄崟鑾锋満鍣ㄤ笂鐨勬煇涓鍧楃綉鍗$殑缃戠粶鍖咃紝褰撲綘鐨勬満鍣ㄤ笂鏈夊鍧楃綉鍗$殑鏃跺欙紝浣犻渶瑕侀夋嫨涓涓綉鍗°傜偣鍑籆aputre->Interfaces.. 鍑虹幇涓嬮潰瀵硅瘽妗嗭紝閫夋嫨姝g‘鐨勭綉鍗°傜劧鍚庣偣鍑"Start"鎸夐挳, 寮濮嬫姄鍖 Wireshark 绐楀彛浠嬬粛 WireShark 涓昏鍒嗕负杩欏嚑涓晫闈 1. Display Filter(鏄剧ず杩囨护...
绛旓細Wireshark鏄竴涓姄鍙栫綉缁滄暟鎹寘鐨勫伐鍏凤紝杩欏鍒嗘瀽缃戠粶闂鏄緢閲嶈鐨勶紝涓嬫枃灏嗕細绠鍗曠殑浠嬬粛涓濡備綍浣跨敤Wireshark鏉鎶撳寘銆1銆佸湪濡備笅閾炬帴涓嬭浇鈥淲ireshark鈥濆苟鍦ㄧ數鑴戜笂瀹夎銆2銆佸鏋滀箣鍓嶆病鏈夊畨瑁呰繃鈥淲inpcap鈥濊鍦ㄤ笅闈㈡妸瀹夎鈥淲inpcap鈥濈殑鍕鹃変笂銆3銆佹墦寮瀹夎濂界殑Wireshark绋嬪簭锛屼細鐪嬪埌濡備笅鍥炬墍绀虹晫闈細涓荤晫闈紝...
绛旓細1銆佺數鑴戝仛wifi鐑偣锛屾墜鏈鸿繛涓婂悗鐢佃剳涓浣跨敤wireshark鎶撳寘 璇ユ柟娉曟墜鏈烘棤椤籸oot锛屽苟涓旈傜敤浜庡悇绉嶆湁wifi鍔熻兘鐨勬墜鏈猴紙IOS銆乤ndroid绛夛級銆佸钩鏉跨瓑銆傚彧瑕佺數鑴戠殑鏃犵嚎缃戝崱鍏锋湁鏃犵嚎鎵胯浇鍔熻兘锛屽氨鍙互銆傛柟娉曞涓嬶細1.鎶婄數鑴戠殑缃戠粶鍋氫负鐑偣 2.寮鍚痺ifi鐑偣鍚庯紝琚祴鎵嬫満杩炴帴鍒拌鐑偣锛3.鍚姩wireshark锛岄夋嫨鍋氫负鐑偣鐨勭綉鍗...
绛旓細Wireshark鏄竴涓姄鍙栫綉缁滄暟鎹寘鐨勫伐鍏凤紝杩欏鍒嗘瀽缃戠粶闂鏄緢閲嶈鐨勶紝涓嬫枃灏嗕細绠鍗曠殑浠嬬粛涓濡備綍浣跨敤Wireshark鏉鎶撳寘銆 1銆佸湪濡備笅閾炬帴涓嬭浇鈥淲ireshark鈥濆苟鍦ㄧ數鑴戜笂瀹夎銆 2銆佸鏋滀箣鍓嶆病鏈夊畨瑁呰繃鈥淲inpcap鈥濊鍦ㄤ笅闈㈡妸瀹夎鈥淲inpcap鈥濈殑鍕鹃変笂銆 3銆佹墦寮瀹夎濂界殑Wireshark绋嬪簭锛屼細鐪嬪埌濡備笅鍥炬墍绀虹晫闈細 ...
绛旓細Wireshark鏄竴涓姄鍙栫綉缁滄暟鎹寘鐨勫伐鍏凤紝杩欏鍒嗘瀽缃戠粶闂鏄緢閲嶈鐨勶紝涓嬫枃灏嗕細绠鍗曠殑浠嬬粛涓濡備綍浣跨敤Wireshark鏉鎶撳寘銆1銆佸湪濡備笅閾炬帴涓嬭浇鈥淲ireshark鈥濆苟鍦ㄧ數鑴戜笂瀹夎銆2銆佸鏋滀箣鍓嶆病鏈夊畨瑁呰繃鈥淲inpcap鈥濊鍦ㄤ笅闈㈡妸瀹夎鈥淲inpcap鈥濈殑鍕鹃変笂銆3銆佹墦寮瀹夎濂界殑Wireshark绋嬪簭锛屼細鐪嬪埌濡備笅鍥炬墍绀虹晫闈細涓荤晫闈紝...
绛旓細鐐瑰嚮WIRESHARK鍥炬爣锛屾墦寮WIRESHARK绋嬪簭鍦ㄨ彍鍗曟爮鎵惧埌銆鎶撳寘銆戦夐」鐐瑰嚮銆愭姄鍖呫戯紝璇︾粏閫夐」锛岀偣閫夌涓涓愮綉缁滄帴鍙...銆戝湪鏂扮殑绐楀彛涓偣鍑汇愬紑濮嬨戦夐」锛屽紑濮嬫姄鍖咃紝绋嬪簭寮濮嬫姄鍖咃紝鏁堟灉濡傚浘浠庢姄鍖呬腑鎵惧埌ARP鐨勬潯鐩紝鍙屽嚮閭d釜鏉$洰杩欏氨鏄垜浠墍瑕佹姄鍖呯殑鍐呭浜嗭紝涔嬪悗杩涜鍒嗘瀽澶勭悊銆
绛旓細閫夋嫨Capture鈥擨nterfaces鈥 鎵撳紑缃戠粶鎺ュ彛瀵硅瘽妗 閫夋嫨瑕佸鍏惰繘琛鎶撳寘鐨勭綉缁滆澶囷紝鐐瑰嚮璇ユ潯鐩悗闈㈢殑Options鎸夐挳 鍦ㄨ瀵硅瘽妗嗕腑灏卞彲浠ヨ缃浣跨敤澶氫釜鏂囦欢瀛樺偍鎶撳埌鐨勬暟鎹紝wireshark浼氭牴鎹垜浠寚瀹氱殑鏂囦欢鍚嶈嚜鍔ㄦ寚瀹氭瘡涓娈电殑鏂囦欢鍚嶏紝鍏跺悕瀛椾负 鈥滄寚瀹氱殑鏂囦欢鍚峗搴忓彿_鏃ユ湡鏃堕棿.鎵╁睍鍚嶁濓紝骞朵笖璇ュ璇濇涓彲浠ヨ缃悇绉嶆枃浠...
绛旓細鐢╓ireshark鎶撳寘鑾峰彇iPhone缃戠粶閫氳鏁版嵁 1銆佽繍琛學ireshark锛屽湪绐楀彛涓婄偣鍑籌nterface List锛岀湅鍝紶缃戝崱姝e湪鍙戦佸拰鎺ュ彈鏁版嵁鍖呯殑锛屼粠Packets閭d竴椤瑰彲浠ョ湅鍑恒傜偣鍑荤綉鍗″墠闈㈢殑閫夋嫨妗嗛変腑锛岀劧鍚庣偣Start鎸夐挳寮濮嬫姄鍖呫傚涓嬪浘锛2銆佺幇鍦ㄤ綘灏卞彲浠ュ湪iPhone涓婅繍琛屽悇绉嶇綉缁滃簲鐢ㄤ簡锛屽彧瑕佷粬浠湁缃戠粶閫氳浼犺緭浠讳綍鏁版嵁锛學ireshark閮...
绛旓細鎵撳紑涓涓姄鍙栨枃浠剁浉褰撶畝鍗曪紝鍦ㄤ富鐣岄潰涓婄偣鍑籓pen骞舵祻瑙堟枃浠跺嵆鍙備篃鍙互鍦Wireshark閲屼繚瀛樿嚜宸辩殑鎶撳寘鏂囦欢骞剁◢鍚庢墦寮銆傝繃婊ゆ姤鏂:濡傛灉姝e湪灏濊瘯鍒嗘瀽闂锛屾瘮濡傛墦鐢佃瘽鐨勬椂鍊欐煇涓绋嬪簭鍙戦佺殑鎶ユ枃锛屽彲浠ュ叧闂墍鏈夊叾浠浣跨敤缃戠粶鐨勫簲鐢ㄦ潵鍑忓皯娴侀噺銆備絾杩樻槸鍙兘鏈夊ぇ鎵规姤鏂囬渶瑕佺瓫閫夛紝杩欐椂瑕佺敤鍒癢ireshark杩囨护鍣ㄣ傛渶鍩烘湰鐨勬柟寮忓氨...
绛旓細涓銆鎬庢牱鑾峰彇WireShark锛熷緢绠鍗曪紝鐧惧害鎼滅储WireShark锛屽氨浼氱湅鍒颁笅杞藉湴鍧銆備簩銆浣跨敤WireShark 鍥犱负WireShark鏄嫳鏂囪蒋浠讹紝鎵浠ヤ綘闇瑕佷竴浜涘繀瑕佺殑鑻辨枃鍩虹銆傛墦寮杞欢鐣岄潰 1銆佸紑濮鎶撳寘 閫変腑浣犻渶瑕佺殑缃戝崱锛岀偣鍑籹tart鍗冲彲寮濮嬫姄鍖咃紝鍦ㄨ繖涓椂鍊欒纭繚浣犳兂瑕佹姄鐨勫寘浼氶氳繃浣犻夋嫨鐨勭綉鍗°備竴鑸仛娉曟槸鍦ㄧ數鑴戜笂鎻掍竴鍧楁棤绾跨綉鍗★紝...
