This gist describe how to remove the Cohda header from a .pcap file recorded in a Cohda ITS-G5 radio. This header does contain some information about the radiosignals. But if not interessted in them, it is possible to just remove them.
On a WSL/Linux of some kind, install wireshark-common
:
sudo apt-get update
sudo apt-get install wireshark-common
If you have installed Wireshark on a Windows computer, editcap
is already installed in the Wireshark directory
After this is installed, use editcap
to manipulate the pcap
file:
editcap -T ether -C 32 rx.pcap rx2.pcap
The -T ether
specifies that the starting protocol is ethernet.
The -C 32
cuts of the first 32 bytes (which by incident is the amount of bytes that Cohda adds first)
In case you want to use Windows, it is much the same:
cd "C:\Program Files\Wireshark"
editcap.exe -T ether -C 32 rx.pcap rx2.pcap