How to use the pyshark.LiveRingCapture function in pyshark

To help you get started, we’ve selected a few pyshark examples, based on popular ways it is used in public projects.

Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.

michoo / pci / pci.py View on Github

if __name__ == "__main__":
    # args parser
    parser = argparse.ArgumentParser(description='Packet communications investigator')
    parser.add_argument("-f", '--file',
                        help='directory to clean  if not declared use of current dir',
                        action='store', dest='filepath')
    parser.add_argument("-i", "--interface", help="chose interface", action="store", dest='interface')
    parser.add_argument("-r", "--ring", help="activate ring buffer", action="store_true",
                        default=False)

    args = parser.parse_args()

    # live ring capture
    if args.ring:
        logger.info("Starting Live Ring Capture on " + args.interface)
        cap = pyshark.LiveRingCapture(interface=args.interface, only_summaries=True, ring_file_size=4096,
                                      num_ring_files=50, ring_file_name='./db/pcap/pci.pcapng')
        packet_analysis_live(cap)
    # live capture
    elif args.interface:
        logger.info("Starting Live Capture on " + args.interface)
        cap = pyshark.LiveCapture(interface=args.interface, only_summaries=True)
        packet_analysis_live(cap)

    # pcap
    elif args.filepath:
        logger.info("Starting pcap analysis on " + args.filepath)
        cap = pyshark.FileCapture(input_file=args.filepath, only_summaries=True)
        packet_analysis(cap)

    else:
        parser.print_help()

How to use the pyshark.LiveRingCapture function in pyshark

To help you get started, we’ve selected a few pyshark examples, based on popular ways it is used in public projects.

pyshark

Package Health Score

Popular pyshark functions

Similar packages