抓包工具tcpdump的使用，抓取具體的sql語句 [root@test7_chat_api_im ~]# tcpdump -s 0 -l -w - dst 106.75.74.38 and port 3306 |strings tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytesSELECT refresh FROM tbl_device where device = 'H0001'KSELECT refresh FROM tbl_device where device = 'A0001'K jKJ& call sp_get_log_db_rs('OC')K call sp_get_log_db_rs('OK')K jKJ& SELECT refresh FROM tbl_device where device = 'B0001'K 1e{"server":"106.75.74.38","port":3306,"dbname":"yunva-log","user":"root","pwd":"pass"}

centos6.9
1.安裝依賴
yum install -y cmake libpcap-devel glib2-devel libnet-devel

2.獲取mysql-sniffer代碼并編譯
git clone https://github.com/Qihoo360/mysql-sniffer
cd mysql-sniffer
mkdir proj
cd proj
cmake ../
make
cd bin/

# 啟動監聽
# ./mysql-sniffer -i eth0 -p 3306 -e stderr

說明：
1.必須要帶-e才能輸出日志
-e stderr

2.通過工具navicat不論是直連還是通過ssh跳轉都不能抓到sql，只看到報錯的信息

3.通過其他linux直接mysql連接就可以抓到語句

通過tcpdump進行抓包

# tcpdump -s 0 -l -w - dst 10.11.0.211 and port 3306 |strings

?

轉載于:https://www.cnblogs.com/reblue520/p/9123299.html

總結

以上是生活随笔為你收集整理的tcpdump抓取mysql语句的全部內容，希望文章能夠幫你解決所遇到的問題。

如果覺得生活随笔網站內容還不錯，歡迎將生活随笔推薦給好友。