This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

how to convert .dump format file to a text file in windows?

0

i would like to convert a tcpdump file to a text file in windows.

asked 26 Jun '14, 09:40

veni's gravatar image

veni
11114
accept rate: 0%

edited 26 Jun '14, 09:42

One Answer:

2

Install Wireshark, start Wireshark, open the tcpdump file with Wireshark, then from the file menu, 'Export Packet Dissections | as "Plain Text" file ...', type in a filename and click Save.

answered 26 Jun '14, 09:47

grahamb's gravatar image

grahamb ♦
19.8k330206
accept rate: 22%

thanks for the answer..but it crashes when i tried to open the file (5.44 GB). is there a way to solve this problem? please guide me because i am still new.

(28 Jun '14, 00:10) veni
1

Ah, you forgot to mention that you're dealing with a very large capture.

Have a look at the out of memory page on the wiki for tips, the blog entry from @Jasper discussing the issue.

Basically you can:

  1. Try using tshark.
  2. Chop the file into smaller chunks with editcap and then process each chunk
  3. Use a 64 bit OS and 64 bit Wireshark\tshark and buy more RAM.
(28 Jun '14, 04:33) grahamb ♦