Essential techniques in Wireshark
The techniques introduced under this section will provide you with the basic knowledge of what you will be dealing with, before diving deep into the packet analysis; these techniques are essential to understand from the packet analysis perspective. These mostly fall under the Statistics menu under the Menu bar as shown in the following figure:
Numerous options under the Statistics category
The Summary window
To access the Summary window in Wireshark, go to Statistics in the Menu bar and select Summary. The Summary window includes the following:
- File details
- Time details
- Capture details
- Display details
Important details that can be deduced from here are:
- Capture time and duration
- Version details of operating system and Wireshark
- Capture interface
- Any capture/display filter used
- Average packets/sec, average packet size
- Average bytes/sec
The Protocol Hierarchy window
To view this, go to Statistics in the Menu bar and select Protocol Hierarchy. This section provides us with...
