网络分析Wireshark常见filter指令及描述
日期: 2020-11-29 分类: 跨站数据测试 491次阅读
网络分析Wireshark常见filter指令及描述
| Filter | 筛选用途描述 |
|---|---|
| eth.addr / eth.dst / eth.src | MAC |
| rip.auth.passwd | RIP password |
| ip.addr / ip.dst / ip.src | IP |
| tcp.port / tcp.dstport / tcp.srcport | TCP ports |
| tcp.flags(ack, fin, reset, syn…) | TCP flags |
| udp.port / udp.dstport / udp.srcport | UDP ports |
| http.authbasic | Basic authentication |
| http.www_authentication | HTTP authentication |
| http.data | HTTP data portion |
| http.cookie | HTTP cookie |
| http.referer | HTTP referer |
| http.server | HTTP server |
| http.user_agent | HTTP user agent |
| wlan.fc.type eq 0 | 802.11 management frame |
| wlan.fc.type eq 1 | 802.11 control frame |
| wlan.fc.type eq 2 | 802.11 data frame |
| wlan.fc.type_subtype eq 0 (1=response) | 802.11 association request |
| wlan.fc.type_subtype eq 2 (3=response) | 802.11 reassociation request |
| wlan.fc.type_subtype eq 4 (5=response) | 802.11 probe request |
| wlan.fc.type_subtype eq 8 | 802.11 beacon |
| wlan.fc.type_subtype eq 10 | 802.11 disassociate |
| wlan.fc.type_subtype eq 11 (12=deauthenticate) | 802.11 authenticate |
| 比较运算符 | 比较运算符 |
|---|---|
| eq | == |
| ne | != |
| gt | > |
| lt | < |
| ge | >= |
| le | <= |
| 逻辑运算符 | 逻辑运算符 |
|---|---|
| and | && |
| or | || |
| xor | ^^ |
| not | ! |
除特别声明,本站所有文章均为原创,如需转载请以超级链接形式注明出处:SmartCat's Blog
精华推荐