This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Using/Modifying WireShark to log http traffic

0

I am new to wireshark - please can you let me know if it is possible to use or modify wireshark to run on a system and log all outgoing http traffic. Does this feature already exist or would Wireshark need to be modified to make this happen. Please advise. Thanks MG

asked 14 Mar '11, 20:42

gotters's gravatar image

gotters
1111
accept rate: 0%


One Answer:

0

Wireshark can do that, simply by capturing the network traffic which would include HTTP traffic. You might want to use capture filters to limit the capture to http traffic only, for example using "tcp port http" and writing the files to disk using multiple files. You can do that by opening the capture options dialog. Reading the recorded trace might be a bit more complex than reading a "normal" log file, but you can export all packets to text files if you want to, or even reconstruct http content.

answered 15 Mar '11, 00:56

Jasper's gravatar image

Jasper ♦♦
23.8k551284
accept rate: 18%