From the course: Wireshark: Malware and Forensics
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Save, export, and print - Wireshark Tutorial
From the course: Wireshark: Malware and Forensics
Save, export, and print
- [Instructor] When working with Wireshark, many of us are familiar with the Save As feature but you can also export and print packet captures. I'm in Wireshark now and if I were to save this capture, I would simply go to File and Save As. I created a folder on my desktop called Captures. Now when we take a look below, the first thing it says is File Name and I am simply going to use Sample. Now, Wireshark can save the packet data in its native file format; that's PCAP Next Generation, but also, it could save it in the file formats of many other protocol analyzer so that other tools can read the captured data. I'll drop this down and here you can see the different choices: Wireshark TCP Dump, RedHat, SuSE, Microsoft NetMon, and Sniffer and many others. In this case, I'll simply say Sample and save. The developers add new file formats from time to time but this is a nice range of extensions where most protocol analysis tools will be able to accept your packet capture. In addition to…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
-
Baseline your network4m 11s
-
(Locked)
Displaying data using filters3m
-
(Locked)
Creating complex filters5m 24s
-
(Locked)
Capture filters3m 18s
-
(Locked)
Using statistics3m 14s
-
(Locked)
Save, export, and print6m 28s
-
(Locked)
Coloring rules3m 55s
-
(Locked)
Using a ring buffer4m 24s
-
(Locked)
Challenge: HTTP packets39s
-
(Locked)
Solution: HTTP packets1m 27s
-
(Locked)
Challenge: Firewall rules1m 27s
-
(Locked)
Solution: Firewall rules3m 37s
-
-
-
-