From the course: Network Forensics
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Wireshark hands-on
- [Instructor] Let's try some advanced Wireshark features. The first one I'd like to show you is how to start packet capturing without going through the initial Wireshark GUI screen. Type sudo space wireshark space - i. The -i option allows you to specify your interface. My interface name is ens18, and that's why I type ens18 here, and then type space - k next. - k option is what starts the packet capturing session immediately. Press Enter. Type the password. As you can see, we're bypassing the initial GUI screen, where you do the interface selection and so on, and the packet is being captured without pressing the capture button. Let's generate some more traffic by opening up our web browser. I'll type the domain name, www.linkedin.com. Press Enter. A lot of new traffic is being generated, and there are so many IP addresses. It'll be nice to turn some of these numbers into more meaningful domain names. Let's go to View, and select Name Resolution, and then choose Resolve Network…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.