Wireshark
Last updated
Was this helpful?
Last updated
Was this helpful?
is a network traffic monitoring tool.
You can capture packets from an interface on a remote machine using SSH and tcpdump.
On Mac/Ubuntu this is built into Wireshark by default and you can select it as an option from the capture interface screen. (I think on Windows there's a plugin. Go find out and update this wiki!)
You just give it the SSH details and it runs tcpdump on the remote machine.
This is covered really well
(or you can do it from prefs)
and then go to Statistics > Endpoints and you can see the IPs plotted out on a map
by importing the cert