PCAPdroid icon indicating copy to clipboard operation
PCAPdroid copied to clipboard

Published 20 hours ago verified publisher icon emanuele-f

Implement Wireshark sshdump

Open besendorf opened this issue 2 years ago • 3 comments

In addition to saving a .pcap file to the phone or serving it via http it would be a nice addition to support Wiresharks sshdump which send the live pcap data over ssh. This way you could analyse the traffic in real time on a remote PC.

I saw that https://github.com/egorovandreyrm/pcap-remote implemented this feature but unfortunately the project is abandoned and the source for the ssh server is not Open Source if I looked correctly.

besendorf avatar Apr 06 '22 10:04 besendorf

On Linux you can already analyze the traffic on Wireshark in real time. This feature would make it possible to do the same on Windows. Please note that currently this is not a priority

emanuele-f avatar Apr 06 '22 11:04 emanuele-f

Oh you're right. I didnt read carefully. The first two senteces of the description led me to believe it isnt possible.I missed the udp stream option.

besendorf avatar Apr 06 '22 12:04 besendorf

You can also combine curl with the http server mode to get a live tcp-based capture, check out the user guide

emanuele-f avatar Apr 06 '22 12:04 emanuele-f