 | 1 | initial version |
There are a number of command line utilities that can be used to work on capture files, including splitting them.
Have a look at the utilities at the URL below. editcap may assist, but others may serve you better depending on exactly what you want to do. I'd suggest using these tools to split or filter your capture to reduce the number of packets you are lookin at when analysing in Wireshark. https://www.wireshark.org/docs/man-pages/
