capfiledump
capfiledump
The capfiledump tool is used to dump a 3GD capture file in human readable format.
Syntax
capfiledump -f <file> [--help]
Command | Description |
---|---|
--help , -h | Show help text and exit |
-f <file> ,--input <file> | Specify the input file |
Output Example
- Below is the output from running capfiledump on a cap file generated by capturing one udp packet with dynamic descriptor 2:
capfiledump (v. 3.7.0.0-caffe) ============================================================================== Input file detected as 3GD capture file. Packet offset in file: 0x0000000000000080 Dynamic descriptor format 2 caplength : 150 offset0 : 14 offset1 : 34 ipProtocol : 17 rxPort : 1 descrFormat : 2 descrLength : 22 tsColor : 1 ntDynDescr : 1 timestamp : 213FFF6AC03E913 offset2 : 42 color : 0x5C28000 00000000 96 80 03 22 44 04 02 D6 13 E9 03 AC F6 FF 13 02 00000010 2A 00 00 0A 17 00 00 00 00 00 00 00 00 00 00 00 00000020 00 00 08 00 45 00 00 6E 00 00 40 00 0A 11 70 80 00000030 00 00 00 00 00 00 00 00 00 00 00 00 00 5A FF 3A 00000040 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00000050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00000060 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00000070 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00000080 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00000090 00 00 3A 4F AB BF --------------------------------------------------------- File size: 0x116 (278) offset: 0x807C (32892) Done. 1 packets dumped.
Examples
- Dump packets in file "src.cap"
capfiledump -f src.cap