WIRESHARK Flashcards by Test CEH | Brainscape

Q

logical operator

A

and, or, &&, ||

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

specific search

A

[specific]

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

negative operator

A

not, !

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

equal operator

A

==, eq

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

non equal operator

A

!=, ne

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

comparaison operator (greater, less, etc)

A

gt
ge
lt
le

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

ip destination search ?

A

ip.dest ==

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

ip source search ?

A

ip.src ==

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

ip source or dest ?

A

ip.addr

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

ip.addr == … or …

A

ip.addr == ip.src OR ip.dst

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

check if tcp syn is 1

A

tcp.flags.syn == 1

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

mac adress equal to ?

A

eth.addr ==

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

tcp.port == … or …

A

tcp.port == tcp.srcport OR tcp.dstport

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

check if hostname is ?

A

ip.host ==

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

check if multicast traffic search

A

(eth.dst[0] & 1)
Nota:
if first bit is one, so it’s multicast

How well did you know this?

1

Not at all

2

3

4

5

Perfectly