This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Tshark Command to make a xml file of wireshark data

0

Hey. I am new to wireshark & need some help. How can I make a xml file of wireshark data using tshark command? Tshark does not allow me to write anything initially. How to write a command on it?

asked 29 Jan '13, 03:18

Hamra%20Rehan's gravatar image

Hamra Rehan
1232
accept rate: 0%


One Answer:

1

From the output of tshark -h:

-T pdml|ps|psml|text|fields
   format of text output (def: text)

And from the tshark man page:

-T pdml|psml|ps|text|fields

Set the format of the output when viewing decoded packet data. The options are one of:

pdml Packet Details Markup Language, an XML-based format for the details of a decoded packet. This information is equivalent to the packet details printed with the -V flag.

psml Packet Summary Markup Language, an XML-based format for the summary information of a decoded packet. This information is equivalent to the information shown in the one-line summary printed by default.

So you can use either -T pdml or -T psml depending on your needs.

answered 29 Jan ‘13, 03:32

grahamb's gravatar image

grahamb ♦
19.8k330206
accept rate: 22%