Your traffic is under control
Wireshark is a free software for analyzing computer network traffic (such as Ethernet, FDDI, PPP, Token-Ring, etc.), available for Windows and other operating systems. Wireshark differs from similar programs in its graphical user interface and great possibilities for sorting and filtering information. This program allows the user to view all network traffic in real-time using the network card in promiscuous mode.
We will tell you about the main characteristics and advantages of this program.
Wireshark for Windows has earned its popularity due to its many advantages. Among them are:
the ability of traffic interception in real time;
various protocol decoders (such as TELNET, FTP, POP, RLOGIN, ICQ, SMB, MySQL, HTTP, NNTP, X11, NAPSTER, IRC, RIP, BGP, SOCKS 5, IMAP 4, VNC, LDAP, NFS, SNMP, MSN, YMSG, etc.);
you are viewing previously saved network traffic.
data import and export from other packet analyzers. Wireshark can save intercepted packets into formats of other programs with similar functionality;
the ability to search and filter packets by multiple criteria;
great possibilities of statistics creation.
Wireshark understands the structure of many network protocols, so it can parse a network packet by showing the value of each protocol field on any level. This program can also work with various formats of input data and open data files intercepted by other programs.
Working with network protocols
Wireshark supports hundreds of different network protocols, including VoIP analysis and decryption of IPsec, ISAKMP, Kerberos, SNMPv3, SSL / TLS, WEP, and WPA / WPA2. Depending on the equipment used, there is support for reading the real-time activity of Ethernet, IEEE 802.11, PPP / HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, etc. The resulting data can be exported into XML, PostScript, CSV, or plain text files.
- Free and open-source software
- Supports data filtering
- Analyzes traffic from various sources
- Option to download data on a local device
- Outdated interface