The previous post gives details for various commands of tshark to capture the traffic. In this post I will use Tshark command to extract the .pcap file to csv and which can be use to either post the data to your database server for some graph based analysis or to be spreed sheet.
Tag Archives: tcpdump
Tshark filter commands
Tshark is the command-line version of wireshark. It provide many useful commands and capture filters that can be used on terminal which provides an efficient way to analyse the incoming traffic and capture the traffic in pcap . Let me give you a brief about the terminology we use in Tshark.