tshark

tshark is a network protocol analyzer. It lets you capture packet data from a live network, or read packets from a previously saved capture file, either printing a decoded form of those packets to the standard output or writing the packets to a file. tshark's native capture file format is pcapng format, which is also the format used by Wireshark and various other tools.^[1]

Documentation

man 1 'tshark' [EN]

Syntax

tshark [PARAMETER ...] [FILTER]

References

↑ man 1 'tshark'

[1] 1 'tshark'

[1]