Packet sniffer: Difference between revisions

case: try to find mp4 file

keyword filter at URL Snooper v.2.30.01

• full request URI: ex: http://www.example.com/folder/file.mp4 ok
• partial URI path: ex: /folder/file.mp4, file.mp4, mp4 ok
• wildcat: ex: *.mp4 not work

Filter at Wireshark 1.6.5

• full request URI: ex: ip.dst == 127.0.0.1 and http.request.uri matches "upload2/letsgo.mp4" (where the domain www.example.com was mapping to IP: 127.0.0.1) ok
• partial URI path: ex: http.request.uri matches "/folder/file.mp4", http.request.uri matches "file.mp4", http.request.uri matches "mp4" ok
• wildcat: ex: http.request.uri matches "*.mp4" not work

software list

URL Snooper v.2.30.01

• live sniffer: ok
• save as file: n/a
• time stamp: n/a

Wireshark 1.6.5

• live sniffer: ok
• save as file: ok
• time stamp: ok

reference

• DisplayFilters - The Wireshark Wiki