Kismetdb packet stripping
kismetdb_strip_packets tool processes the unified kismetdb log and deletes the stored packets.
This tool is available as part of Kismet when built from source, or in the kismet-logtools package, as of
Kismet stores packets as binary data in the kismetdb log file.
Packet data is invaluable for analyzing results, replaying data, capturing handshakes, and more; It can also be large, take a lot of room, and contain personally identifiable or private information gathered during a capture.
Before sharing a packet log (for instance with sites which may accept kismetdb logs directly), the packet data can be stripped.
kismetdb_strip_packets tool will retain all metadata - MAC addresses, signal, and location - but will erase the contents of the packets.
$ kismetdb_strip_packets --in some-kismet-file.kismet --out some-other-file.kismet
kismetdb_strip_packetswill not overwrite the target file if it exists already.
--forcewill cause it to clobber the destination.
kismetdb_strip_packetsruns a SQL Vacuum command to optimize the database and clean up any journal files. Skipping this process will save time on larger captures.