<- Back

network capture

Capture as PcapNg file
Capture network traffic of single process 
sudo ptcpdump -w demo.pcapng -i any -- curl -L http://google.com
Capture already running process (PID) 
sudo ptcpdump -w demo.pcapng -i any --pid 1234 -f
strace (log to stdout)
Capture network traffic of single process 
strace -f -e trace=network -s 10000 curl -L http://google.com
Capture already running process (PID) 
strace -f -e trace=network -s 10000 -p 1234
httptap
Capture 
httptap -- curl https://andreas-mausch.de

https://github.com/mozillazg/ptcpdump