Wireshark 101: Expressions Examples, HakTip 121
Вставка
- Опубліковано 29 сер 2024
- Hak5 -- Cyber Security Education, Inspiration, News & Community since 2005:
____________________________________________
On this week's episode of HakTip, Shannon Morse gives several expression examples that you can use when working within the Display Filter Box.
Today is all about expression examples. It's a little weird to work within the boundaries of this little text box, and what it'll accept. Throughout the years, Wireshark has been updated and so has the syntax of the expressions it'll accept. Today, I'm using Wireshark v. 1.12.1. I'll start with some hostname and addressing filters. I ran a Wifi Packet Capture on my network and I want to find all the packets related to a source of xxx.xxx.xxx.xxx. I'll type ip.src == 192.168.1.180. This tells Wireshark I'm looking for a source IP that is equal to xxx.xx.xxx.xxx. If I change this to ip.src_host I'll get pretty much the same output. If I change it to ip.addr, I'll get anything that relates to that IP address, or ip.dst will give me just destination outputs. If you're on an IPV6 network, change IP to ipv6. And change the IP address to the ipv6 address you're looking for. It'll look like 2001:0db8:0000:0000:0000:ff00:0042:8329 with 8 groups of 16 bits each. If you can packet capture using DNS host names, you can type ip.host == nameofthehost. Now try ip.addr == 192.168.1.0/24 and this will show anything on that network within that range.
Since I'm on an ipv4 network, I can also do about a hundred other options... I should mention that it would be incredibly hard to memorize them all, so go to tips@hak5.org. And be sure to check out our sister show, Hak5 for more great stuff just like this. I'll be there, reminding you to trust your technolust.
~-~~-~~~-~~-~
Please watch: "Bash Bunny Primer - Hak5 2225"
• Bash Bunny Primer - Ha...
~-~~-~~~-~~-~
____________________________________________
Founded in 2005, Hak5's mission is to advance the InfoSec industry. We do this through our award winning educational podcasts, leading pentest gear, and inclusive community - where all hackers belong.
I JUST ordered the ALFA USB WiFi AWUS036NEH a couple days before the video and of course had to take advantage of the SNUBS code so ended up finding something extra in the store to use it. Love the show, keep up the good work!
had fun watchingSlip of tongue"sister show" LOLShow was amazing
I wish they had stuff like this when I was growing up. It is amazing how much information is available these days. Back in the day, you were lucky to get an education at all, let alone having alternate choices to choose between. We don't even have a long enough lifespan to watch all the cat videos. We had to drive to Blockbuster if we wanted to watch a movie, and sometimes the one we wanted was checked out. Those were dark times.
Blockbuster was kinda like UA-cam, only a literal building with actual movies on DVD and VHS, and you had to pay for it. Things are completely different nowadays. I don't see how people get drug addictions in this modern age. What's the point? Consuming information feels way better than drugs. It gives you an amazing amount of control over your cognitive development. The Internet is my antidrug. I sure am hungry. I need to eat, too. Maybe I'll just watch a few more videos. After that I'm done. It's been a stressful week. A few videos, just to take the edge off and help me relax.
You can do both. Drugs and information consumption. They offer a level of understanding greater than the sum of their parts.
By which I mean there are numerous studies pointing to a wide number of drugs like LSD, Psilocybin, Ketamine, Valproate, Amphetamines, etc, providing hugely beneficial cognitive and neurological changes. We wouldn't know the structure of DNA if not for LSD, being the most obvious example
metsubo You're just not familiar with my writing style. There is usually more to what I'm saying than is explicitly spelled out. But since it comes from in my head, there's no guarantee others will understand the point I was trying to make underneath the surface. Plus, it's open to interpretation.
In this case, I was trying to portray overconfidence, and I used drugs to qualify my own status as being accomplished having not resorted to drug abuse and subsequently fallen victim to the vices of addiction. But at the end, I attempted to show the reader I too had fallen into addiction -- i.e., namely addiction to social media.
So, in a way the character I envisioned was a digital addict. But yes, indeed. You are correct. My experiences with LSD and magic mushrooms have been positive. Although cannabis is my drug of choice in real life. I also take SRIs. Strangely enough, I am an advocate of responsible drug use.
www.samharris.org/blog/item/drugs-and-the-meaning-of-life
Of course, you'd be forgiven for misunderstanding if you looked at what I said and not what I meant.
Thanks Shannon for making this video, really informative
Tim Wood Thank you for watching!
My favorite is port 58008
why does it not turn green, but yellow when we try ip.addr!="some ip address"?
Correct Syntax is: ip.addr == `some_ip_address`
Will all the Wireshark 101 videos be in a playlist for easy reference later on? ( I've been saving them to my favorites folder, which is about useless since there's thousands of videos in there. )
On another topic: A really knowledgeable friend once showed me how to save videos from websites by looking through the source code then copying part to a text file then renaming it to an html file then doing something I can't remember what and I was able to download videos. Crap, I can't remember how, it's been too many years ago. Do you know what I'm talking about? It would be great if I could remember how that worked.
can you tell me which softwear is best for hacking my next door neighbours wifi?
Thank you!
Why do you want to hack your neighbour's WiFi?
because he treats people like shit!
also i want to no if their are a softwear that really works. thank you.
If your neighbour treats people like shit, how will hacking his WiFi help? Wouldn't that make you just as bad?
pcre would be nice also && || operators would be nifty..
do u have a boyfriend
she's very married, bro.