Using Wireshark Command Line Tools

The ultimate source of information in a computer network is often called packets. Security engineers need to quickly assess and deal with security breaches or threats. Network Engineers must be able to identify the root cause of an issue quickly before it affects user experience. Software engineers must measure the response time across variable speed networks in order to adjust timers within their code. This course, Wireshark Command Line Tool, will teach you how to use tshark and dumpcap, editcap and mergecap to capture and convert, analyze and convert packets across the network. You'll first learn how to configure a Windows machine so that Wireshark CLI Tools are present in the PATH statement. Next, you will explore which tool is most effective to capture packets in a given situation. Also, you will be able to distinguish between display and capture filters. Finally, you will look at examples of filter syntax. You'll then combine hundreds of pcap files and extract the necessary packets to reply to a log event or trouble ticket. You'll also learn how to analyze packets using statistics. This includes how to identify network congestion and security threats, as well as how to find the top TCP conversation or IPv4 speaker. This course will equip you with the knowledge and skills to use Wireshark Command line tools to capture and filter packets and convert packet capture files (pcaps) into and analyze them.