2

Life is simple with text-encoded formats like JSON. I can see enough text in the dump to figure out where something can be wrong. But with the growing popularity of binary interchange formats, I think tcpdump no longer makes the cut. Am I right to say that?

If yes, what are other viable alternatives to analyze the formats I mentioned in the question?

hummingV
  • 141

1 Answers1

1

tcpdump is used to capture and dump network packets.

To do actual analysis on captured packets you usually need what is called a packet analyzer with protocol decode capabilities. Wikipedia maintains a useful list as does the wireshark team .

Wireshark has plugins for decoding a large number of protocols

HBruijn
  • 80,330
  • 24
  • 138
  • 209