How to automate wireshark capture?

asked 2020-01-20 03:44:42 +0000

Hi Team,

I would like to cature the wireshark at every monring 2:55am to 3:10am. Can we do that?.

Kind Regads, Sathish.

2 Answers

answered 2020-01-20 21:04:14 +0000

got some info i put together on my website that may help you

capture from the command prompt

Create a Wireshark Desktop Shortcut To Automatically Capture

Wireshark Packet Capture: Tshark Vs. Dumpcap

Remotely Stopping Wireshark

plus a ton more. help yourself. no login, no ads, just stuff

answered 2020-01-20 05:23:16 +0000

What you probably can do is automate the network capture. In fact Wireshark itself does not capture network traffic, it uses the program dumpcap for that. This command line tool can be launched from a script, at the time desired, and instructed to capture for a limited time (--autostop), 15 minutes in your case (or 900 seconds, so --autostop 900). The output file(s) can then be loaded into Wireshark for analysis.

