I'm using the answer from this question to hex data from SSL traffic, how do I add a capture filter along with this so that I get hex dump of only that hosts' application data. I tried using 'host gateway.push.apple.com' but said that its a capture filter . I need to basically filter for this host and need to get decrypted hex dump of application data alone. Can tshark do that?
asked 23 Jan '15, 13:34
converted 23 Jan '15, 14:03
Assuming you're using a command line similar to that of the answer to which you attached your question, i.e.
answered 23 Jan '15, 14:07