Wireshark - Graphic analysis tool. anyone knows?

wireshark analysis
17,654

Solution 1

Have you tried Wireshark's own "statistics" tools. You have some pretty nice tools to do endpoint conversation analysis (somehow similar to netflow), IO graphs, per protocol statistics, protocols hierarchies, flow graphs, packet length distributions plus several others. Also, many of these tools accepts Wireshark's filter syntaxis so the drill down you can make and the information you can extract from a pcap file is quite deep.

Solution 2

I just recently purchased Cascade Pilot, which is kind of spendy.

Share:
17,654
Flip
Author by

Flip

Updated on September 17, 2022

Comments

  • Flip
    Flip over 1 year

    Does anyone knows a graphical tool to analyse wireshark captures?

    Like something that can agregate traffic by ip's and by protocol and show's it graphicly.

    Anyone knows a freeware/opensource utility?

    Thanks

    • Admin
      Admin about 13 years
      Are you trying to do this on the spot, or have a more permanent statistics-gathering setup?
    • Admin
      Admin about 13 years
      I want to save a pcap, and then analyse it.
  • Flip
    Flip about 13 years
    Does it work won Windows? (win2008r2 / Win7)
  • Hyppy
    Hyppy about 13 years
    MRTG would also work, using a relatively simple SNMP setup instead of a possibly awkward Netflow configuration.
  • mfinni
    mfinni about 13 years
    NetFlow is a protocol, like SNMP. You need to run Netflow collector software that is pointing at your network devices. There are netflow collectors that run on Windows, yes. SolarWinds Orion has a netflow component, there are others.
  • mfinni
    mfinni about 13 years
    Hyppy- Can you actually get protocol-level information from SNMP? As requested, Flip wants IPs (doesn't specific source or destination) and protocol - presumably TCP/UDP port, again not specified but that's most common. How do you export or query that via SNMP? I didn't think you could, but if you know how, that would be great.
  • Hyppy
    Hyppy about 13 years
    Ahh you're right, no protocol information in SNMP that I know of, at least not without getting really dirty in the MIBs on a vendor-by-vendor basis :-/
  • Flip
    Flip about 13 years
    Thanks jliendo, i didn't saw that feature. That did it it's a very nice feature and it gives an idea of going overall.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

analysis_options.yaml the included file not found
TCP Server sends [ACK] followed by [PSH,ACK]
Can you check/monitor the client certificates sent in requests using Wireshark?
How to decode and play back rtp captured packets using Wireshark?
How can I dump and decrypt HTTPS traffic from the command line under linux?
Sniffing Facebook chats with Wireshark
AMR Raw Output from Wireshark not playing in players
How to create a wireshark display filter with wildcard?
Getting YouTube livestream URL
How to filter out "TCP Fast Retransmission" in Wireshark