PCAP Analysis

If you're in cybersecurity or networking, then you may need to analyze pcap files. The OhMyDebn menu has an Install section that allows you to install standard libpcap utilities like tcpdump, tshark, and wireshark. It also allows you to install our new OhMyPCAP tool. Alternatively, you can run ohmydebn-ohmypcap or just use hotkey Ctrl + Alt + P. Any of these methods will check to see if OhMyPCAP is installed and install it if necessary.

Once OhMyPCAP starts just click the hyperlink at the bottom of the terminal window to open the OhMyPCAP web interface in your browser.

The welcome screen allows you to upload a PCAP file or load a previous analysis:

OhMyPCAP welcome screen

After analysis, you can view security alerts, network metadata, and extract streams:

OhMyPCAP analysis screen

You can read more about OhMyPCAP at https://github.com/dougburks/ohmypcap.