wireshark介绍
官方文档:https://www.wireshark.org/docs/
一站式学习Wireshark,具体详见链接:http://bltog.jobbole.com/70907/ 这里直接略过
附:一些常用的过滤条件表达式(这些条件都是我瞎写的):
ip.addr == 192.168.5.1 and !ssdp and !dns
ip.addr == 192.168.2.11 and tcp.port == 3306 and !ssl
tcp.port == 80 and ip.dst == 192.168.5.5 and ip.src == 192.168.2.100
tcp.dstport == 80 or tcp.srcport == 80
http.request.method=="GET"
http.request.method=="POST"
ip.src==192.168.5.5 and http
udp.port == 53
dns or ssdp
filter的文档:
https://www.wireshark.org/docs/wsug_html/#ChUseFilterToolbarSection0daybank
文章评论