>> And where can i get these instructions and their corresponding
>> opcodes.
>
>
> on BSD systems the header is in /usr/include/net/bpf.h
>
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/net/bpf.h
and for a general introduction to the bpf machine, have a look at the
original paper:
McC
Latha G wrote:
Hi all,
I have a question on interpreting the output of -d option..
I used tcpdump -d option
o/p: (000) ret #96
I interpreted it as returning 96 bytes of the data.
yes
and i used tcpdump -dd option
o/p: { 0x6, 0, 0, 0x0060 },
I interpreted, 0x6 refers to the opcode of ret
Hi all,
I have a question on interpreting the output of -d option..
I used tcpdump -d option
o/p: (000) ret #96
I interpreted it as returning 96 bytes of the data.
and i used tcpdump -dd option
o/p: { 0x6, 0, 0, 0x0060 },
I interpreted, 0x6 refers to the opcode of ret instruction... 0x00
