November 2019
Intermediate to advanced
346 pages
9h 36m
English
In the following steps, we utilize a Python library named PyShark, along with Wireshark, to capture and examine network traffic.
pip show pyshark
Note the location of the package. In the pyshark directory in this location, find the file, config.ini. Edit tshark_path to the location of tshark inside your wireshark installation folder. Similarly, edit dumpcap_path to the location of dumpcap inside your wireshark installation folder.
Steps 2 and 4 should be executed in a Python environment. Note that, as of the current version, pyshark may have some bugs when run in a Jupyter notebook.