tshark 根据条件跟随 TCP 流
tshark follow TCP stream upon condition
我想在特定条件后将流的所有 TCP 流量转储到单行中。换句话说,我想做类似的事情:
tshark -i wlan0 -s 0 -z follow,tcp,raw,x
x=`tshark -i wlan0 -s 0 -Y 'http.request.full_uri contains "blah-blah" and http.request.method == GET' -n -Tfields -e tcp.stream`
我该怎么做?
我想在特定条件后将流的所有 TCP 流量转储到单行中。换句话说,我想做类似的事情:
tshark -i wlan0 -s 0 -z follow,tcp,raw,x
x=`tshark -i wlan0 -s 0 -Y 'http.request.full_uri contains "blah-blah" and http.request.method == GET' -n -Tfields -e tcp.stream`
我该怎么做?