NTA [Network Traffic Analysis]
Some Wireshark features • Capture live packet data from a network interface. • Open files containing packet data captured with tcpdump/WinDump, Wireshark, and many other packet capture programs. • Import packets from text files containing hex dumps of packet data. • Display packets with very detailed protocol information. • Save packet data captured. • Export some or all packets in a number of capture file formats. • Filter packets on many criteria. • Search for packets on many criteria. • Colorize packet display based on filters. • Create various statistics.
Basic Filters
Section titled “Basic Filters”- ip.addr == <IP>
