TigerShark is a Python script that provides a user-friendly interface for interacting with TShark, a network protocol analyzer. It allows you to perform various network analysis tasks, view statistics, and extract information from packet capture (PCAP) files. TigerShark simplifies the use of TShark's command-line capabilities and provides an easy-to-use menu-driven interface. More info: https://github.com/z0her0/TigerShark/wiki. This tool is designed to assist in analyzing malicious PCAP files but can be used for troubleshooting network related issues as well.
- Definitely works on Python 3.12.2
- see
requirements.txt - Mac or Linux.
- WireShark (tshark)
-
Clone the TigerShark repository to your local machine:
git clone https://github.com/z0her0/TigerShark.git -
Navigate to the TigerShark root directory:
cd TigerShark -
Create a virtual environment:
python3 -m venv venv_tigershark -
Activate the virtual environment:
source venv_tigershark/bin/activate -
Install dependencies:
pip install -r requirements.txt -
Run the main program
tiger_shark.py:python3 src/tiger_shark.py -
When prompted, provide path to PCAP file (point this to where your PCAP file exists):
../pcaps/name_of_pcap.pcap -
Press ENTER to display the main menu.
