Wireshark

Logical Operators

• and (&&)
• or (||)
• not(!)
• xor (^^)
• slice []
• group ()

Logging Pentest traffic

#Log all traffic to or from my host
dumpcap -f -"ether host my:mac:address:here or broadcast" -w pentest -b filesize:10000 

#log all traffic related to IP scope
dumpcap -f "ip host xxx.xx.xxx.xxx or ip host xxx.xxx.xxx.xxx 

Comparison Operators

• eq
• ne
• gt
• lt
• ge
• le
• Contains
• Matches