How To Use Wireshark Command Line?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
1. Start Wireshark from the command line by typing “wireshark”.
2. To capture packets from a specific interface, use the -i option followed by the interface you want to capture from.
3. To capture a certain type of protocol, use the -f option followed by the protocol name.
4. To apply a capture filter, use the -f option followed by the filter you want to apply.
5. To capture a certain number of packets and then quit, use the -c option followed by the number of packets you want to capture.
6. To stop a capture process, use the -S option.
7. To save a capture file, use the -w option followed by the filename.
8. To open a capture file for analysis, use the -r option followed by the filename.
9. To list the available interfaces, use the -D option.
10. To dump a list of the packets in a capture file, use the -V option followed by the filename.