🦈Wireshark

Wireshark Filter by IP	        ip.add == 10.10.50.1
Filter by Destination IP	ip.dest == 10.10.50.1
Filter by Source IP	        ip.src == 10.10.50.1
Filter by IP range 	        ip.addr >= 10.10.50.1 and
                                ip.addr <=10.10.50.100
Filter by Multiple Ips 	        ip.addr == 10.10.50.1 and 
                                ip.addr == 10.10.50.100
Filter out IP adress	        ! (ip.addr == 10.10.50.1)
Filter subnet	                ip.addr == 10.10.50.1/24
Filter by port	                tcp.port == 25
Filter by destination port 	tcp.dstport == 23
Filter by ip adress and port 	ip.addr == 10.10.50.1 and
                                Tcp.port == 25
Filter by URL	                http.host == “host name”
Filter by time stamp	        frame.time >= “June 02, 2019 18:04:00”
Filter SYN flag	                Tcp.flags.syn == 1
                                Tcp.flags.syn == 1 and tcp.flags.ack ==0
Wireshark Beacon Filter	        wlan.fc.type_subtype = 0x08
Wireshark broadcast filter	eth.dst == ff:ff:ff:ff:ff:ff
Wireshark multicast filter	(eth.dst[0] & 1)
Host name filter	        ip.host = hostname
MAC address filter	        eth.addr == 00:70:f4:23:18:c4
RST flag filter	                tcp.flag.reset == 1

#logical operators

and or &&	Logical AND	All the conditions should match 
or or ||	Logical OR	Either all or one of the condtions should match
xor or ^^	Logical XOR	Exclusive alterations – only one of the two conditions should match not both 
not ot !	Not (Negation)	Not equal to 
[ n ]   [ … ]	Substring operator	Filter a specific word or text 

#Filtering packets

 ==	Equal	                ip.dest  ==  192.168.1.1
 !=	Not equal	        ip.dest  !=   192.168.1.1
 >	Greater than	        frame.len   >   10
 <	less than	        frame.len  <   10
 >=	Greater than or equal	frame.len  >=   10
 <=	Less than or equal	frame.len  <=   10