1. 4
  1.  

  2. 2

    tcpdump -A also dumps packet content in ASCII which is great for dumping HTTP < v2 protocol packets.

    1. 2

      Is there more difference between tcpflow and tcpdump then just understanding HTTP?

      1. 1

        Another similiar tool is ngrep, which I’ve found absolutely invaluable when debugging odd protocol issues.

        1. 1

          I’ve used tcpflow for years. A great tool.

          Another tool I like is scapy. It gives you a Python shell and environment for sending, receiving, and processing packets.