Source: /cirosantilli/wireshark

= Wireshark
{c}
{wiki}

Amazing tool that captures packets and disassembles them. Allows you to click an interactive tree that represents <Ethernet>, <TCP IP> and application layer like <HTTP>.

Start capture immediately from CLI, capture packets to/from 192.168.1.102:
``
sudo wireshark -f 'host 192.168.1.102' -k
``