tshark: perform filters to rip out a pcap from a large pcap

April 13th, 2010 mysurface

One time I been given numbers of very large pcap files, ask me to do some analysis on http traffics. The given pcap is raw traffics pcap capture from servers, most of the packets in the pcap for me is redundant, because I am only interested in http traffics. Opening a large pcap with wireshark [...]

Posted in Network, tshark | Hits: 171591 | 3 Comments »

Top Ten Processes Watcher

July 13th, 2008 mysurface

top command provides a dynamic real-time view of a running system. It can display system summary information as well as a list of tasks currently being managed by the Linux kernel. But if you want get something more specific, you must play some tricks on it. For example, I want a clean view of top [...]

Posted in head, tail, top, watch | Hits: 127181 | 4 Comments »

Google search in command line

June 13th, 2008 mysurface

Recently I discovered a web page that provide command line interface for google search, as the author called it as Google Shell. Check out the screenshot, and also try it out at http://goosh.org/. It does looks like unix-shell, thank to Ajax. You may think that is hilarious, but don’t make judgment before trying it out. [...]

Posted in Misc, Network | Hits: 85882 | 10 Comments »

WordPress exploit: we been hit by hidden spam link injection

May 26th, 2008 mysurface

We been hit by hidden spam link injection (a modified version of goro spam injection), this crack injects spam links through wordpress wp_footer() or wp_head() hook. The spam links only reveal itself if crawled by search engine bot such as googlebot, and they are hidden from our eyes. We believe the cracker’s purpose is to [...]

Posted in curl, curlftpfs, file, find, Misc | Hits: 219895 | 117 Comments »

a stupid way of internet sharing between two laptops

April 6th, 2008 mysurface

I always want to find an easy way to do an internet sharing between my two laptops. Well I figure out a way, which is really stupid! but well, for some extend, it works. I know there should be a proper ways to do that, but with the limited knowledge of networking, this is only [...]

Posted in Admin, ifconfig, ssh | Hits: 55072 | 8 Comments »

KMess, a msn messenger client for linux

January 25th, 2008 mysurface

Majority of the linux users who have msn account will use pidgin (gaim) or kopete. Me myself using pidgin as an IM client for my MSN account. There are few features of Windows Live Messenger that I wish to have it but its not with pidgin, such as P2P file transferring, personal emoticon, offline message [...]

Posted in kmess, Misc, Network | Hits: 48896 | 5 Comments »

Ettercap, what can be done after ARP poisoning?

January 24th, 2008 mysurface

To protect yourself from security threats, you have to at least know what security threats that happens and how it could harmful to you. In what network environment, you are susceptible to hacker’s attack, spoof, phishers. You have to understand what attacks they can performs, what tools they have used and experience the same tools [...]

Posted in arp, arping, ettercap, etterlog, Network | Hits: 66983 | 1 Comment »

Discover your neighboring machines

January 10th, 2008 mysurface

Is there any tools that allow me to discover my neighboring machines that hook up to the same LAN switch like mine? The simplest way I can do is use ping, I can send a broadcast packet to everyone in a subnet, so that they can response back. Let say I am in subnet of [...]

Posted in Network, nmap, ping | Hits: 49206 | 3 Comments »

write a online manga downloader using bash

November 29th, 2007 mysurface

There are plenty of site that allows you to read manga online, but you have to tolerate for the slow access and ton’s of heavy loaded ads. You can’t download the manga directly using batch download provided by wget or any download manager. but if you know how to do bash script, you could somehow [...]

Posted in Bash, seq, Text Manipulation, wget | Hits: 84512 | 9 Comments »

A simple tutorial for network scanning software (nmap)

November 5th, 2007 mysurface

Nmap is an open source network scanning software, it could help one to investigate simple network issues and also it may be use as a security vulnerability assessment tools. Nmap support a lots of options, when you type nmap –help The list of nmap options could not even feed a page of virtual terminal, which [...]

Posted in Network, nmap | Hits: 48294 | 2 Comments »