https://github.com/FireyFly/webshark

🦈 Tool for visualizing packet captures.
https://github.com/FireyFly/webshark

packet-analyzer pcap wireshark

Last synced: about 2 months ago
JSON representation

🦈 Tool for visualizing packet captures.

• Host: GitHub
• URL: https://github.com/FireyFly/webshark
• Owner: FireyFly
• License: mit
• Created: 2014-12-10T21:42:02.000Z (over 10 years ago)
• Default Branch: master
• Last Pushed: 2020-05-03T19:24:04.000Z (about 5 years ago)
• Last Synced: 2025-04-03T19:41:21.837Z (about 2 months ago)
• Topics: packet-analyzer, pcap, wireshark
• Language: JavaScript
• Homepage:
• Size: 85 KB
• Stars: 44
• Watchers: 2
• Forks: 4
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
> **NOTE:** this code is all pretty old and pretty haphazardly written; it was

> really mostly designed to cover my needs for a reversing project at the

> time.  It's not very user-friendly, and I'd suggest using this project more

> as a reference rather than using it as is.

**Webshark** is a tool for visualizing pcap (e.g. Wireshark) network captures

on a timeline.  It was written as part of reverse-engineering efforts because

the tabular view in Wireshark didn't visualize the timing aspects of the

packets very well.

Webshark displays every pair of two IPs as a separate row; for this reason

you'll only want to load relatively small/well-filered packet captures into

Webshark.  I recommend setting up a network where only the devices you are

interested in are connected, and capturing that.

For now, Webshark supports only the classic pcap format (since it's so easy to

parse); captures in the newer pcapng format can be converted:

    $ editcap foo.pcapng foo.pcap

## Screenshot

![Screenshot](meta/screenshot.png "Demo of Webshark viewing a pcap file")

## License

MIT license.