SANS Institute - Tshark

From GCA ACT
Jump to navigationJump to search

Description


Tshark is a network protocol analyzer that lets you capture and analyze packets from a network. It is a command-line tool that is part of the Wireshark suite of tools. Tshark can be used to capture packets from a live network or from a file. It can also be used to create filters to capture specific traffic.

More Information


https://www.wireshark.org/docs/man-pages/tshark.html