unix socket sniffing
· 426 B · Text
原始文件
// move the socket
sudo mv /var/run/docker.sock /var/run/docker.sock.original
// redirect all socket communications to a tcp listener in port 1234
sudo socat TCP-LISTEN:1234,reuseaddr,fork UNIX-CONNECT:/var/run/docker.sock.original
// create a new proxy socket to be use by the application
sudo socat UNIX-LISTEN:/var/run/docker.sock,fork TCP-CONNECT:127.0.0.1:1234
// sniff the traffic
sudo tcpdump -i lo -netvv port 1234
| 1 | // move the socket |
| 2 | sudo mv /var/run/docker.sock /var/run/docker.sock.original |
| 3 | |
| 4 | // redirect all socket communications to a tcp listener in port 1234 |
| 5 | sudo socat TCP-LISTEN:1234,reuseaddr,fork UNIX-CONNECT:/var/run/docker.sock.original |
| 6 | |
| 7 | // create a new proxy socket to be use by the application |
| 8 | sudo socat UNIX-LISTEN:/var/run/docker.sock,fork TCP-CONNECT:127.0.0.1:1234 |
| 9 | |
| 10 | // sniff the traffic |
| 11 | sudo tcpdump -i lo -netvv port 1234 |
| 12 |