- Install Wireshark on Kali Linux using the command apt-get install wireshark
- Start Wireshark by running the command wireshark
- Select the network interface you want to monitor. If you’re unsure which interface to
use, run the command ifconfig in the terminal to view a list of available interfaces. - Once you’ve selected the interface, click the green “Start” button to begin capturing
network traffic. - Use the filter bar at the top of the Wireshark window to filter the captured traffic by
various parameters, such as IP address or protocol. - Analyze the captured traffic by clicking on individual packets and viewing the details
in the lower pane. - To stop capturing traffic, click the red “Stop” button. You can also save the captured
traffic to a file by going to File > Save As. - To start monitoring the network traffic again, just repeat the steps above.
Note: In Kali Linux, Wireshark may require super user privilege to access all the network
interfaces, so you may need to run the command as root(sudo) or use the command sudo
wireshark.
Reference:
● The Wireshark website: https://www.wireshark.org/
● The Kali Linux documentation on Wireshark: https://docs.kali.org/general-
use/wireshark-start-capture-interface
● Wireshark’s official user’s guide:
https://www.wireshark.org/docs/wsug_html_chunked/
● A tutorial on using Wireshark filters:
https://www.wireshark.org/docs/wsug_html_chunked/ChWorkBuildDisplayFilterSection.ht
ml
● A tutorial on how to capture and analyze network traffic with Wireshark on Kali Linux:
https://www.cyberciti.biz/tips/capture-analyze-network-traffic-with-wireshark-kali-
linux.html
