From the course: Wireshark: Malware and Forensics

Unlock the full course today

Join today to access over 22,600 courses taught by industry experts or purchase this course individually.

Save, export, and print

Save, export, and print - Wireshark Tutorial

From the course: Wireshark: Malware and Forensics

Start my 1-month free trial

Save, export, and print

- [Instructor] When working with Wireshark, many of us are familiar with the Save As feature but you can also export and print packet captures. I'm in Wireshark now and if I were to save this capture, I would simply go to File and Save As. I created a folder on my desktop called Captures. Now when we take a look below, the first thing it says is File Name and I am simply going to use Sample. Now, Wireshark can save the packet data in its native file format; that's PCAP Next Generation, but also, it could save it in the file formats of many other protocol analyzer so that other tools can read the captured data. I'll drop this down and here you can see the different choices: Wireshark TCP Dump, RedHat, SuSE, Microsoft NetMon, and Sniffer and many others. In this case, I'll simply say Sample and save. The developers add new file formats from time to time but this is a nice range of extensions where most protocol analysis tools will be able to accept your packet capture. In addition to…

Contents