Skip to content

Instantly share code, notes, and snippets.

@atomlab

atomlab/tshark_examples.md

Last active January 25, 2020 08:45
Show Gist options
  • Save atomlab/eaf61a10a7f0811f71d8a37252a3ca09 to your computer and use it in GitHub Desktop.
Save atomlab/eaf61a10a7f0811f71d8a37252a3ca09 to your computer and use it in GitHub Desktop.
Download ZIP
Tshark Examples
Raw
tshark_examples.md

Example 1

Method: POST
Port: 17076
interface: lo

tshark -i lo -Y "http.request.method == POST" -f 'dst port 17076' -T fields -e frame.time -e http.file_data

output

Jan  9, 2020 13:45:51.475342801 UTC {
    "amount": "1",
    "is_send": "true",
    "subtype": "send"
}

Example 2

tshark -i eth0  -Y "http.request.method == POST" -f 'dst port 8669' -T fields -e frame.time -e http.request.method -e http.request.uri

outptut

Jan 20, 2020 08:09:07.251151525 UTC	POST	/logs/transfer
Jan 20, 2020 08:09:07.481379692 UTC	POST	/logs/event
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment