Created
August 1, 2019 08:36
-
-
Save parsibox/2cf7bacf9706cdb77dc60899fa49126f to your computer and use it in GitHub Desktop.
tshark
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo tshark -i ens160 -T fields -E separator="|" -t e -Y "tcp.port == 80 and http.request and http.request.method == \"POST\" and http.request.full_uri matches \"wp\"" -e frame.time -e ip.src -e tcp.srcport -e ip.dst -e tcp.dstport -e http.request.method -e http.request.full_uri -e data -e text | |
| sudo tshark -i ens160 -T fields -E separator="|" -t e -R "tcp.port == 80 and http.request and http.request.method == \"POST\" and not http.request.full_uri matches \"webmail\" " -e frame.time -e ip.src -e tcp.srcport -e ip.dst -e tcp.dstport -e http.request.method -e http.request.full_uri -e data -e text | |
| sudo tshark -i ens160 -T fields -E separator="|" -t e -R "tcp.port == 80 and http.request and http.request.method == \"POST\" and not http.request.full_uri matches \"webmail\" and not http.request.full_uri matches \"sabinnet\" " -e frame.time -e ip.src -e tcp.srcport -e ip.dst -e tcp.dstport -e http.request.method -e http.request.full_uri -e data -e text |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
view post data