Can I run wireshark without doing an install? We have some prod servers that we cannot install the program until the weekend and need to run it without an install?
Thank you, Dario
asked 02 Nov '11, 14:14
You can download the sources and compile Wireshark yourself, then you can run it from the build directory without doing an install. Or, if your production servers are running Windows, then it might be easier for you to download and install either the U3 or portableapps versions on a compatible USB flash drive and run it from there instead.
If your production servers are running Windows and you want to capture live traffic as opposed to only reading existing capture files, then you will still have to install WinPcap though.
answered 02 Nov '11, 17:48
If the production servers have, for example, tcpdump or snoop installed on them (many UN*Xes may have tcpdump installed; Solaris machines might have snoop installed), you could use tcpdump with
answered 03 Nov '11, 18:30
Guy Harris ♦♦