Quite useful tool to handle large pcap files

Lately I’ve got a pcap file over 700MB to look at and Wireshark crashes when opening after 10 minutes of trying. So this pcap-util based on Perl Net::Pcap has been quite useful to filter out what I’m interested in, it’s also possible to divide the file according to the timeline if filter does not apply. Check it out here.

Contents on this site are licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. Creative Commons License