[ale] [OT] Variation of grep

JK jknapka at kneuro.net
Wed Mar 11 19:24:45 EDT 2009


Jim Kinney wrote:
> assuming a repeating structure as in the example:


OK, well, let's not assume that :-)

Here's another use case: go through a PDML file and dump out
the payloads of all SNMP SET packets in the file. Don't dump
anything that isn't inside a <proto name="snmp"> section, and
dump only those sections containing the string
name="snmp.get_request"

(PDML is an XML representation of packet structure.
"tshark -T pdmp -r filename.pcap" will dump the PDML of a PCAP
capture file.)

-- JK

-- 
A closed mouth gathers no feet.


More information about the Ale mailing list