Why?
- You're debugging on a remote machine and need to study a pcap.
- You don't want to copy it back to your desktop.
- You're familiar with Wireshark. 😃
Features
- Read pcap files or sniff live interfaces.
- Use Wireshark's display filters.
- Reassemble TCP and UDP streams.
- View conversations by protocol.
- Written in Go - for Linux, macOS, *BSD, Android (termux) and Windows.
For setup, bugs and feature requests head over to GitHub.
News!
- Jul 11 2022 - Termshark v2.4 is out now, featuring packet search and profiles.
- Sep 04 2021 - Termshark v2.3 is ready! With configurable columns, magic wormhole and more.
- Jan 03 2021 - Termshark v2.2 is here! With vim-navigation, a cmdline, packet marks, and themes.