What's Wireshark?
Wireshark is a widely-used network protocol analyzer.- It is a free application you use to capture and view the data traveling back and forth on your network.
- It is a very helpful tool for the operation team to trace network issues!
Wireshark Usage
You can use Wireshark to do the following:
- Troubleshoot network problems.
- Examine security problems.
- Verify network applications.
- Debug protocol implementations.
- Learn network protocol internals.
Wireshark Features
- Available for UNIX and Windows.
- Capture live packet data from a network interface.
- Open files containing packet data captured with TCPDump/WinDump.
- Import packets from text files containing hex dumps of packet data.
- Display packets with very detailed protocol information.
- Save packet data captured.
- Export some or all packets in a number of capture file formats.
- Filter packets on many criteria.
- Search for packets on many criteria.
- Colorize packet display based on filters.
- Create various statistics.
Wireshark Tutorial for Beginners
In this video, you will learn
- How to track network activity?
- How to view specific frames, TCP, IP, and HTTP information?
- How to view specific packets being sent and received on the network?
- How to view information within those packets and spot malicious or suspicious network behavior?
Download
See Also