Upload a PCAP, HAR, firewall export, or security log and get a structured dashboard with TCP health, TLS, DNS, HTTP, endpoint traffic, top findings, analyst filters, and a print-ready brief. Files up to 50 MB are parsed in-memory and are not stored on disk.
Drop a file here or click to browse. The fast parser handles PCAP, PCAPNG, and HAR; vendor logs are routed to the universal analyzer when supported.
sudo tcpdump -i any -w mycap.pcap -s 0 \ 'port 443 or port 53 or host 10.0.0.5'
Stop with Ctrl-C. -s 0 captures the full packet (not just the first 96 bytes). Always filter to reduce file size.
1. Open Wireshark 2. Pick your active interface (Ethernet / Wi-Fi) 3. Filter: ip.addr == 10.0.0.5 4. Hit Stop after the issue reproduces 5. File → Save As → .pcapng
tshark -i 1 -w mycap.pcapng -F pcapng \ -f "host x.x.x.x and (port 443 or port 53)"