Wireshark : Navigating the GUI for a Packet Capture - PCAP
A sample from INE's Wireshark Technologies Video Course. Wireshark is the world’s leading open-source, freely available protocol analyzer. Previously known as Ethereal, Wireshark is the most sought-after and used network troubleshooting tool, often deployed to solve problems by analyzing the packet layer. Wireshark can be used to perform protocol analysis, network analysis, and problem isolation. The tool can be used on Windows- and Unix/Linux-based systems locally or remotely and can be used as a GIU-based application or launched from the command line. This course, taught by bestselling author and trainer Robert Shimonski, is designed to provide network administrators with the practical skills needed to solve problems, analyze data, view the inner workings of packets, and perform advanced configurations to solve tough issues.
In the field of computer network administration, PCAP (packet capture) consists of an application programming interface (API) for capturing network traffic. Unix-like systems implement PCAP in the libpcap library; Windows uses a port of libpcap known as WinPcap.
In this video we will see how you can conduct a PCAP using Wireshark.