With the default installation of Wireshark, a command-line version of protocol analyser called Tshark also gets installed. There are a good number of CUI-based sniffing tools available, including Capinfos, Dumpcap, Editcap, Mergecap, Rawshark, Reordercap, Text2pcap, and Tshark.
The most common and widely used command-line tool for protocol analysis purposes is Tshark, which can capture live traffic and analyze saved capture files. Tshark uses the pcap library to capture and translate the packets. Just like Wireshark's filtering option are available in Tshark too. Applications like Tshark prove themselves worthy, with benefits such as low memory requirement, easy installation, and simple command sets to run the sniffer.