From the course: Wireshark: Malware and Forensics

Unlock the full course today

Join today to access over 22,500 courses taught by industry experts or purchase this course individually.

Capture filters

Capture filters - Wireshark Tutorial

From the course: Wireshark: Malware and Forensics

Start my 1-month free trial

Capture filters

- [Narrator] If I know the type of traffic that I need to filter, I can use a capture filter. When you use a capture filter, I'm going to drop this down. I'll go to options. So capture and options. And then, I did select Wi-Fi 'cause that's the one where- That interface, I will use Wi-Fi. And down below here says capture filter for selected interfaces. Well now I'm going to click on the bookmarks and see the capture filters, and you can see what is available. Now, some of 'em are prebuilt. TCP only, if I were to select that as you can see, TCP pretty standard. Well you know what I want? I just want DNS traffic. Now, I'm just going to just do a little test and see. I want to see how much traffic I'm getting just on DNS, and I'll type DNS. Well now it's red. Now, you think something's wrong with that because it's red. Well, I didn't use a capital letter on the left-hand side. Wonder why. Well, let's take a look. I want to go to the Wireshark Wiki. And now, let's take a look at DNS. Now…

Contents