Subscribe ($699.00)

Essentials → Wireshark 101: Essential Skills for Network Analysts

Wireshark 101 Course 8: Use Command-Line Tools to Capture, Split and Merge Traffic (WS101-8)


Description
Author: Laura Chappell
Category: Wireshark 101: Essential Skills
CPE Credits: 1

This course focuses on using Capinfos, Tshark, Dumpcap, Editcap and Mergecap to split, merge, and obtain information about trace files. In addition, this course covers the process of command-line capture, field extraction, and creation of trace file subsets.
Content
  • 8.0 Introduction
  • 8.1. Split a Large Trace File into a File Set
  • Lab 42: Split a File and Work with Filtered File Sets
  • 8.2. Merge Multiple Trace Files into One File
  • Lab 43: Merge a Set of Files using a Wild Card
  • 8.3. Capture Traffic at the Command Line
  • Lab 44: Use Tshark to Capture to File Sets with an Autostop Condition
  • 8.4. Use Capture Filters during Command Line Capture
  • 8.5. Use Display Filters During Command-Line Capture
  • Lab 45: Use Tshark to Extract HTTP Get Requests
  • 8.6. Use Tshark to Export Specific Field Values and Statistics from a Trace File
  • Lab 46: Use Tshark to Extract HTTP Host Names and IP Addresses
  • Section 8 Challenge
Completion rules
  • All units must be completed
  • Leads to a certificate with a duration: Forever
Back