Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

answered 2019-08-10 01:19:45 +0000

Ross Jacobs gravatar image

Hi Genesius,

  • Sanitize: You want to use TraceWrangler, made by Wireshark Contributor Jasper Bongertz.
  • Remove TCP payload: Use editcap with a snaplen
  • Remove packets: Filter them out with a display filter in Wireshark and then File > Export Specified Packets. In tshark, this is tshark -r $file -Y "$display_filter" -w $filtered_file.

I agree with @cmaynard that checking out the Wireshark Tools page will help you.

Cheers

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2