tcpdump mailing list archives
interpreting the output of tcpdump -d option
From: "Latha G" <lathajee () gmail com>
Date: Sat, 25 Feb 2006 14:12:36 +0530
Hi all,
I have a question on interpreting the output of -d option..
I used tcpdump -d option
o/p: (000) ret #96
I interpreted it as returning 96 bytes of the data.
and i used tcpdump -dd option
o/p: { 0x6, 0, 0, 0x00000060 },
I interpreted, 0x6 refers to the opcode of ret instruction... 0x00000060
refers to the 96 bytes.....the remaing 0'es stands for what ?
and tcpdump -ddd
o/p: 1
6 0 0 96
this is the decimal representation to the above -dd option right?
is that 1 refers to the the number of instructions??
And where can i get these instructions and their corresponding opcodes.....
Thanks in advance..
Regards,
Latha.
-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubscribe.
Current thread:
- interpreting the output of tcpdump -d option Latha G (Feb 25)
- Re: interpreting the output of tcpdump -d option Matthew Luckie (Feb 25)
- Re: interpreting the output of tcpdump -d option Gregor Maier (Feb 25)
- Re: interpreting the output of tcpdump -d option Matthew Luckie (Feb 25)