![[Level:16]](http://www.gilgil.net/modules/point/icons/default/16.gif "Point:23265point (7%), Level:16/30"){kind=icon}
gilgil[공통 필터]
not arp and not broadcast and not multicast and not port 3389 and not port 137
[URL 뽑기]
tshark -l -Y http.request.full_uri -T fields -e http.request.full_uri "not arp and not broadcast and not multicast and not port 3389 and not port 137" -i 1
[SSL 인증서 common name 뽑기]
tshark -l -Y ssl.handshake.extensions_server_name -T fields -e ssl.handshake.extensions_server_name "not arp and not broadcast and not multicast and not port 3389 and not port 137" -i 1
[DNS query 및 Addr 뽑기]
tshark -l -Y dns.resp.addr -T fields -e dns.qry.name -e dns.resp.addr -i 1
[HTTP request에서 js 파일만 뽑기]
tshark -l -Y "http.request.full_uri matches \"js$\"" -T fields -e http.request.full_uri -i 1
