[ale] [OT] Variation of grep
Greg Freemyer
greg.freemyer at gmail.com
Wed Mar 11 19:32:01 EDT 2009
You could do it in awk easy enough. Even as a one liner, but maybe
not as a 80 char one-liner.
Greg
On Wed, Mar 11, 2009 at 7:24 PM, JK <jknapka at kneuro.net> wrote:
> Jim Kinney wrote:
>> assuming a repeating structure as in the example:
>
>
> OK, well, let's not assume that :-)
>
> Here's another use case: go through a PDML file and dump out
> the payloads of all SNMP SET packets in the file. Don't dump
> anything that isn't inside a <proto name="snmp"> section, and
> dump only those sections containing the string
> name="snmp.get_request"
>
> (PDML is an XML representation of packet structure.
> "tshark -T pdmp -r filename.pcap" will dump the PDML of a PCAP
> capture file.)
>
> -- JK
>
> --
> A closed mouth gathers no feet.
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
>
--
Greg Freemyer
Litigation Triage Solutions Specialist
http://www.linkedin.com/in/gregfreemyer
First 99 Days Litigation White Paper -
http://www.norcrossgroup.com/forms/whitepapers/99%20Days%20whitepaper.pdf
The Norcross Group
The Intersection of Evidence & Technology
http://www.norcrossgroup.com
More information about the Ale
mailing list