├── .github
    └── README.md
└── Dockerfile


/.github/README.md:
--------------------------------------------------------------------------------
 1 | <h1 align="center">🐋 Docker TCPDump</h1>
 2 | <p align="center">
 3 |   <i>Small Docker container to sniff the traffic of any other Docker container with tcpdump</i>
 4 | <br>
 5 | <img width="250" src="https://i.ibb.co/CvxTJ4Y/lissy93-docker-tcpdump.png" alt="lissy93/tcpdump" />
 6 | <p>
 7 |   
 8 | ---
 9 |   
10 | ### Usage  
11 |   
12 | ```
13 | docker run --rm -v $(pwd):/dump --tty --net=container:<container_name> lissy93/tcpdump tcpdump -i any -w /dump/dump.pcap
14 | ```
15 | 
16 | Where `<container_name>` is the running container you would like to analyze, and `dump.pcap` is the output filename.
17 | 
18 | Once you've finished captureing traffic, open the pcap file in [Wireshark](https://www.wireshark.org/), or your favorite packet analyzer.
19 | 
20 | You can also append any other [`tcpdump`](https://www.tcpdump.org/) commands with `docker run lissy93/tcpdump tcpdump [commands]`.
21 | 
22 | The container is published on DockerHub under [lissy93/tcpdump](https://hub.docker.com/r/lissy93/tcpdump), 
23 | or build and run the [Dockerfile](https://github.com/Lissy93/docker-tcpdump/blob/main/Dockerfile) yourself.
24 | 
25 | ---
26 | 
27 | <p  align="center">
28 |   <i>© <a href="https://aliciasykes.com">Alicia Sykes</a> 2022</i><br>
29 |   <i>Licensed under <a href="https://gist.github.com/Lissy93/143d2ee01ccc5c052a17">MIT</a></i><br>
30 |   <a href="https://github.com/lissy93"><img src="https://i.ibb.co/4KtpYxb/octocat-clean-mini.png" /></a>
31 | </p>
32 | 


--------------------------------------------------------------------------------
/Dockerfile:
--------------------------------------------------------------------------------
1 | FROM alpine:latest
2 | RUN apk add --no-cache tcpdump
3 | CMD tcpdump -i any
4 | 


--------------------------------------------------------------------------------