Packet sniffer

From LemonWiki共筆
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

case: try to find mp4 file

keyword filter at URL Snooper v.2.30.01

  • full request URI: ex: http://www.example.com/folder/file.mp4 ok
  • partial URI path: ex: /folder/file.mp4, file.mp4, mp4 ok
  • wildcat: ex: *.mp4 not work Icon_exclaim.gif

Filter at Wireshark 1.6.5

  • full request URI: ex: ip.dst == 127.0.0.1 and http.request.uri matches "upload2/letsgo.mp4" (where the domain www.example.com was mapping to IP: 127.0.0.1) ok
  • partial URI path:
    • ex: http.request.uri matches "/folder/file.mp4", http.request.uri matches "file.mp4", http.request.uri matches "mp4" ok
    • ex: tcp and ip.src== 127.0.0.1
  • wildcat: ex: http.request.uri matches "*.mp4" not work Icon_exclaim.gif

software list

URL Snooper v.2.30.01

  • live sniffer: ok
  • save as file: n/a
  • time stamp: n/a
  • license: free for perosnal usage

Wireshark 1.6.8

  • live sniffer: ok
  • save as file: ok
  • time stamp: ok
  • license: GNU General Public License version 2[1]


reference

resources