Get Info

Get info from a packet capture

Get information and meta-data from your capture.

Looking for tshark -G or tshark -z? Articles on using these flags are not yet written, but will be put here once they are.

Table of Contents

  • Capinfos
  • Get info from a packet capture

  • Rawshark
  • Waste time faster with someone else's bespoke solution!

Honorable Mentions

  • tcpcapinfo: Part of the tcpreplay suite, tcprewrite is useful for diagnosing broken pcap (and only pcap) files. It produces a subset of capinfos data as well as metadata for each packet. Note that this is an old utility written in 2011-12.