naoki86star

インターネットの片隅でなにかしら書いてみる

2018-08-29から1日間の記事一覧

combinates tshark with tcpdump

TSHARK does't accept filters when reading from files, so I combinates tshark with tcpdump. tcpdump -r something.pcap udp and port 53 -w - | tshark -r - -V | lessyou know that tshark filter expression is storonger than tcpdump's.なんだかな…