Scribd
Upload
102 views

Wireshark Cheat Sheet: Adresses

This document provides a cheat sheet for Wireshark including common addresses, operators, protocols and fields that can be used for filtering and analyzing network traffic. It lists MAC addresses, IP addresses, Ethernet, ARP, WLAN, IPv4, UDP, TCP and various high layer protocols that can be examined using Wireshark along with relevant fields for each. The cheat sheet is designed to serve as a quick reference guide for common Wireshark filters, fields and protocols.

Uploaded by

gurudattbalaji
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
102 views

Wireshark Cheat Sheet: Adresses

This document provides a cheat sheet for Wireshark including common addresses, operators, protocols and fields that can be used for filtering and analyzing network traffic. It lists MAC addresses, IP addresses, Ethernet, ARP, WLAN, IPv4, UDP, TCP and various high layer protocols that can be examined using Wireshark along with relevant fields for each. The cheat sheet is designed to serve as a quick reference guide for common Wireshark filters, fields and protocols.

Uploaded by

gurudattbalaji
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 0

Wireshark Cheat Sheet

Adresses
MAC address: 01:02:03:04:05:06
IP address: 10.1.1.1
IP address range: 10.1.1.0/24

Operators
eq or ==
ne or !=
gt or >
lt or <
ge or >=
le or <=
Logic
and or && Logical AND
or or || Logical OR
xor or ^^Logical XOR
not or ! Logical NOT
[n] [] Substring operator

Ethernet
eth
eth.addr
eth.src
eth.dst

ARP
arp
arp.src.hw_mac
arp.dst.hw_mac
src.proto_ipv4
arp.dst.proto_ipv4
WLAN (802.11)
wlan
wlan.addr
wlan.ra //receiver address
wlan.ta //transmitter address
wlan.da //destination address
wlan.sa //source address
wlan.fc.type
wlan.fc.type_subtype
wlan.bssid
wlan.aid //association id
IPv4
ip
ip.addr
ip.src
ip.dst

UDP
udp
udp.port
udp.srcport
udp.dstport
TCP
tcp
tcp.port
tcp.srcport
tcp.dstport
High Layer Protocols
bootp, dns, ftp, http (http.authbasic, http.authorization ), imap, ldap, nfs, pop, rip, sip,
smb, smtp, ssh, telnet, tftp

Based on:
packetlife.net, http://www.lovemytool.com/blog/2010/07/wireshark-wireless-display-and-capture-
filters-samples-part-2-by-joke-snelders.html, http://www.wireshark.org/docs/dfref/w/wlan.html


Designed by: Christian Praher

You might also like