How To Use Wireshark Capture

Wireshark is a network protocol analyzer that can be installed on windows linux and mac.

How to use wireshark capture. Or you could use the keystroke control e. Open your internet browser. Select one or more of networks go to the menu bar then select capture. If you want to stop capturing click the red stop button next to the shark fin. Select the nic you wish to collect a capture on and click start to begin the capture.

Click on capture interfaces. To select multiple networks hold the shift key as you make your selection. Wireshark can also open your own saved captured file. It provides a comprehensive capture and is more informative than fiddler. For example if you want to capture traffic on your wireless network click your wireless interface.

In the wireshark capture interfaces window select start. A pop up window will show up. To save your captures click on file then select save. Click the first button on the toolbar titled start capturing packets you can select the menu item capture start. Wireshark i eth0 k you can also use the shark fin button on the toolbar as a shortcut to initiate packet capturing.

To begin capturing packets with wireshark. In wireshark click on the capture options icon. Click on file then open in wireshark. Once you click this button wireshark will start the live capture process. You can also start wireshark by using the following command line.

Clear your browser cache. Switch to the options tab and uncheck resolve mac addresses return to the input tab. Identify the nic you want to conduct the capture on and uncheck the promiscious checkbox.