THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question

Revision history  [back]

Revision 1
cmaynard's avatar
11.1k
cmaynard
answered 2021-02-19 17:39:24 +0000

You can use such filters to match the packet bytes, if you wish. For example:

tcp == e1:90:1f:90:c0:99:3f:0f:5b:f7:83:25:50:10:04:02:e1:eb:00:00

How useful is that? I don't know. Wireshark merely provides you with the ability to filter just about anything you want, but it's up to the user to decide what's useful or not. Other filters besides equality might be more useful though, for example:

dns contains "wireshark"