wireshark_get_packet_list
Extract a summary list of packets from PCAP files to scan network traffic before detailed analysis. Apply filters to focus on specific protocols or ports.
Instructions
[Summary] Get a summary list of packets (like Wireshark's top pane). Use this first to scan traffic before drilling down.
Args: pcap_file: Path to capture file limit: Rows to return (default: 20) offset: Skip first N rows display_filter: Wireshark display filter (e.g. "tcp.port == 80")
Returns: Tabular list with columns: No, Time, Source, Destination, Protocol, Length, Info
Example: wireshark_get_packet_list("traffic.pcap", display_filter="http")
Input Schema
TableJSON Schema
| Name | Required | Description | Default |
|---|---|---|---|
| pcap_file | Yes | ||
| limit | No | ||
| offset | No | ||
| display_filter | No |