To Find a Rogue DHCP Server—tcpdump/dhclient—nmap


nmap --script broadcast-dhcp-discover
nmap --script broadcast-dhcp-discover -p67 [your network CIDR]

+++++++++++++++++++++++++++++++++++++++++

[root@localhost ~]# ifconfig
enp13s0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500


tcpdump -i enp13s0 -nev udp port 68
tcpdump -i enp13s0 -nev udp src port 67 and not ether host a8:39:44:96:fa:b8
tcpdump -U -i enp13s0 -c 100 -nev udp src port 67 and not ether host a8:39:44:96:fa:b8 >> /tmp/rogue 2>&1 &

dhclient -x
dhclient

<script>window._bd_share_config={"common":{"bdSnsKey":{},"bdText":"","bdMini":"2","bdMiniList":false,"bdPic":"","bdStyle":"0","bdSize":"16"},"share":{}};with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];</script>
阅读(41) | 评论(0) | 转发(0) |
给主人留下些什么吧!~~
评论热议
posted @ 2016-02-01 00:00  张同光  阅读(72)  评论(0编辑  收藏  举报