先请达人们解答下wireshark里面udp.proc filter是怎么用的。。。 quark回答我说和udp options里面的collect process flow information有关,但他也告诉我开了这个选项也没法用。。。也的确是这样的。。。于是就不知道怎么回事了。。。
我去wireshark live support上问,似乎是个”Expert assisted Bot”在回答,*号是我问的内容,>后面是他的回答 http://www.wireshark.org/tools/helpdesk.html
*How can I use udp.proc.srcpid filter? For example, I choose a process which is sending UDP packets, its pid is 1234, then I write udp.proc.srcpid==1234 but it shows nothing. I tried other filters of udp.proc but still nothing works. I’m confused about the usage of udp.proc filters. Thanks for your help!
> Not supported in Windows, without special drivers
* Er…I tried under Archlinux but still nothing works.
> What’s your FreeBSD version?
* Archlinux 3.0//(第一次凌乱。。。Archlinux哪有版本号这一说。。。只好先弄个3.0上去)
> …Tell me more
*Archlinux …
> …OK,you ask me “how can you use udp.proc.srcpid filter? For example, you choose a process which is sending UDP packets, its pid is 1234, then you write udp.proc.srcpid==1234 but it shows nothing. you tried other filters of udp.proc but still nothing works. You’re confused about the usage of udp.proc filters. Thanks for my help!”,tell me more
* I tried it under all platforms but nothing happens
> What speed is your frame relay connection?
* 100Mbps
> Tell me more…
* Is it something collect process flow information?
> I see.
* Is it something about collect process flow information?
> Say, do you have any psychological problems?
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
* ….I bs you…
> Oh… ?
我去wireshark live support上问,似乎是个”Expert assisted Bot”在回答,*号是我问的内容,>后面是他的回答 http://www.wireshark.org/tools/helpdesk.html
*How can I use udp.proc.srcpid filter? For example, I choose a process which is sending UDP packets, its pid is 1234, then I write udp.proc.srcpid==1234 but it shows nothing. I tried other filters of udp.proc but still nothing works. I’m confused about the usage of udp.proc filters. Thanks for your help!
> Not supported in Windows, without special drivers
* Er…I tried under Archlinux but still nothing works.
> What’s your FreeBSD version?
* Archlinux 3.0//(第一次凌乱。。。Archlinux哪有版本号这一说。。。只好先弄个3.0上去)
> …Tell me more
*Archlinux …
> …OK,you ask me “how can you use udp.proc.srcpid filter? For example, you choose a process which is sending UDP packets, its pid is 1234, then you write udp.proc.srcpid==1234 but it shows nothing. you tried other filters of udp.proc but still nothing works. You’re confused about the usage of udp.proc filters. Thanks for my help!”,tell me more
* I tried it under all platforms but nothing happens
> What speed is your frame relay connection?
* 100Mbps
> Tell me more…
* Is it something collect process flow information?
> I see.
* Is it something about collect process flow information?
> Say, do you have any psychological problems?
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
* ….I bs you…
> Oh… ?
FROM :https://blog.flanker017.me/ | Author:Flanker
前置,windows域内认证机制https://payloads.online/archivers/2018-11-30/1 https://www.cnblogs.com/backlion/p/8127868.html https://www.cnblogs…
免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉。
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论