dumpcap

A network traffic dump tool. More information: <https://www.wireshark.org/docs/man-pages/dumpcap.html>.

Install

All systems
curl cmd.cat/dumpcap.sh
Debian Debian
apt-get install wireshark-common
Ubuntu
apt-get install wireshark-common
Alpine
apk add wireshark
Arch Arch Linux
pacman -S wireshark-cli
image/svg+xml Kali Linux
apt-get install wireshark-common
CentOS
yum install wireshark
Fedora
dnf install wireshark-cli
Windows (WSL2)
sudo apt-get update sudo apt-get install wireshark-common
OS X
brew install wireshark
Raspbian
apt-get install wireshark-common
Docker
docker run cmd.cat/dumpcap dumpcap powered by Commando

A network traffic dump tool. More information: <https://www.wireshark.org/docs/man-pages/dumpcap.html>.

  • Display available interfaces:
    dumpcap --list-interfaces
  • Capture packets on a specific interface:
    dumpcap --interface 1
  • Capture packets to a specific location:
    dumpcap --interface 1 -w path/to/output_file.pcapng
  • Write to a ring buffer with a specific max file limit of a specific size:
    dumpcap --interface 1 -w path/to/output_file.pcapng --ring-buffer filesize:500000 --ring-buffer files:10

© tl;dr; authors and contributors