Wireshark windows logo

Wireshark 3.2.6


ProsCons

Analyses hundreds of protocols

Works across platforms

Packets can be viewed in an easy to use GUI

Not suitable for amateur network analysis

Requires protocol analysis knowledge

Whats New (version 3.2.6)

The following vulnerabilities have been fixed:

- wnpa-sec-2020-10 Kafka dissector crash. Bug 16672. CVE-2020-17498

Fixed:

- Kafka dissector fails parsing FETCH responses

- Dissector for ASTERIX Category 001 / 210 does not recognize bit 1 as extension

- "invalid timestamp" for Systemd Journal Export Block

- Decoding Extended Emergency number list IE length

- Some macOS Bluetooth PacketLogger capture files aren’t recognized as PacketLogger files (regression, bisected)

- Short IMSIs (5 digits) lead to wrong decoding+warning

- Decoding of PFCP IE 'PFD Contents' results in "malformed packet"

- RFH2 Header with 32 or less bytes of NameValue will not parse out that info

- CDP: Port ID TLV followed by Type 1009 TLV triggers [Malformed Packet]

- tshark crashed when processing opcda

- tshark with --export-dicom gives “Segmentation fault (core dumped)”

Updated Protocol Support:

- ASTERIX, BSSAP, CDP, CoAP, DCERPC SPOOLSS, DCOM, DICOM, DVB-S2, E.212, GBCS, GSM RR, GSM SMS, IEEE 802.11, Kafka, MQ, Nano, NAS 5GS, NIS+, NR RRC, PacketLogger, PFCP, RTPS, systemd Journal, TDS, TN3270, and TN5250

New and Updated Capture File Support:

- PacketLogger and pcapng


Full Details
GENERAL
App NameWireshark
SloganCapture and analyze the traffic and protocols running on a computer network
PublisherWireshark
Publisher web sitehttp://www.wireshark.org/
Release DateFebruary 28, 2019
UPDATE
Last Update On2020/08/14
Version3.2.6
File NameWireshark-win32-3.0.0.exe
File Size51.7MB
OPERATING SYSTEMS
Main OSWindows
Compatible WithWindows 7/8/10
CATEGORY
CategoryNetworking Software
SubcategoryNetwork Tools
SEQURITY
VirusTotal FlagsNone
VirusTotal Scan LinkCheck Scan
DOWNLOAD INFORMATION
Total Downloads475255
Downloads Last 7 Days49
PRICE And Limits
PriceFree
License ModelFree
LimitationsNot available

Wireshark is knowledgeable protocol analyzer aimed to assist users in troubleshooting, analysis, software and protocol development, and education. The app was written by networking experts round the world and is an example of the facility of the open-source. Wireshark 64-bit is employed by network professionals round the world for analysis, troubleshooting, software and protocol development, and education. Wireshark may be a network protocol analyzer, and is that the standard in many industries. it’s all of the quality features you’d expect in a very protocol analyzer, and a number of other features not seen in the other product. Its open source license allows talented experts within the networking community to feature enhancements.

It is the continuation of a project that started in 1998. many developers round the world have contributed thereto, and it’s still under active development. Read or write many various capture file formats: tcpdump (libpcap), Catapult DCT2000, Cisco Secure IDS iplog, Microsoft Network Monitor, NAI Sniffer (compressed and uncompressed), Sniffer Pro, and NetXray, Network Instruments Observer, Novell LANalyzer, RADCOM WAN or LAN Analyzer, Shomiti or Finisar Surveyor, Tektronix K12xx, Visual Networks Visual UpTime, and WildPackets EtherPeek,TokenPeek, or AiroPeek.

Highlights
Deep inspection of many protocols, with more being added all the time
Live capture and offline analysis
Read/write many alternative capture file formats: tcpdump (libpcap), Pcap NG, Catapult DCT2000, Cisco Secure IDS iplog, Microsoft Network Monitor, Network General Sniffer® (compressed and uncompressed), Sniffer® Pro, and NetXray®, Network Instruments Observer, NetScreen snoop, Novell LANalyzer, RADCOM WAN/LAN Analyzer, Shomiti/Finisar Surveyor, Tektronix K12xx, Visual Networks Visual UpTime, WildPackets EtherPeek/TokenPeek/AiroPeek, and plenty of others
Capture files compressed with gzip can be decompressed on the fly
Live data are often read from Ethernet, IEEE 802.11, PPP/HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, et al. (depending on your platform)
Decryption support for several protocols, including IPsec, ISAKMP, Kerberos, SNMPv3, SSL/TLS, WEP, and WPA/WPA2
Coloring rules will be applied to the packet list for quick, intuitive analysis
Output is exported to XML, PostScript®, CSV, or plain text
Standard three-pane packet browser
Multi-platform: Runs on Windows, Linux, macOS, Solaris, FreeBSD, NetBSD, and lots of others
Captured network data is browsed via a GUI, or via the TTY-mode TShark utility
The most powerful display filters within the industry
Rich VoIP analysis

If you do not have any network analyzing knowledge, Wireshark might cause you to feel a touch lost. The program does have an in depth manual and forum but unless you’re accustomed to protocol analysis, they will not mean much to you. For those who are within the know, Wireshark features deep inspection of many protocols, live capture and offline analysis and even VoIP analysis. Any captured network data may be browsed via a simple to use GUI or alternatively via the TTY-mode TShark utility. additionally, live data will be read from Ethernet, IEEE 802.11, PPP/HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, et al. (depending on your platform).

Finally Wireshark could be a highly specialized tool that the typical user won’t find much use for except for any network administrators out there, it’s a vital addition to your toolkit.