Using the mergecap Tool to Merge Packet Captures
One of the utilities that is included in your Wireshark distribution is a command line tool called ‘mergecap’. We use this tool to merge multiple captures generated, let’s say, from a ring buffer capture (you can see how to do ring buffer captures using tshark here). Alright, so let’s say you have a ring buffer […]
Using the mergecap Tool to Merge Packet Captures Read More »