If you want to know what is going on on your network or whether some malicious or suspicious software broke in and just started floating around your network, you may want to give Wireshark a try. Wireshark gives you the real answers based on sensitive data about what is actually happening inside your network.
Wireshark was known for many years as Ethereal, and got renamed due to trademark issues in the summer of 2006. With this tool you can capture your network packets on either wired connections (LAN) or wireless connections (WLAN): PPP/HDLC, WiFi, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, and others (depending on your platform). It supports almost all the leading operating systems in the industry, including 64-bit. The supported protocols list is really way beyond your expectation. The major advantage is that the developers are constantly trying to add all the newest protocols defined. As a bonus, by using GeoIP, with Wireshark you can also include or exclude traffic based on a particular country.
The live capture of your network data can be used for further analysis off-line. You can save the captured data into any of the most popular formats.
v3.2 [Dec 11, 2019]
Bug Fixes:
The following vulnerabilities have been fixed:
- wnpa-sec-2020-01 WASSP dissector crash. Bug 16324. CVE-2020-7044.
The following bugs have been fixed:
- Incorrect parsing of USB CDC packets. Bug 14587.
- Wireshark fails to create directory if parent directory does not yet exist. Bug 16143.
- Buildbot crash output: randpkt-2019-11-30-22633.pcap. Bug 16240.
- Closing Flow Graph closes (crashes) main GUI window. Bug 16260.
- Wireshark interprets websocket frames after HTTP handshake in a wrong way. Bug 16274.
- A-bis/OML: IPA Destination IP Address attribute contains inverted value (endianness). Bug 16282.
- wiretap/log3gpp.c: 2 * leap before looking ?. Bug 16283.
- Opening shell terminal prints Wireshark: Permission denied. Bug 16284.
- h264: SPS frame_crop_right_offset shown in UI as frame_crop_left_offset. Bug 16285.
- BGP: update of "Sub-TLV Length" by draft-ietf-idr-tunnel-encaps. Bug 16294.
- SPNEGO GSS-API Kerberos ap-options dissection produces "Unknown Bit(s)" expert message. Bug 16301.
- USB Audio feature unit descriptor is incorrectly dissected. Bug 16305.
- Compiling the .y files fails with Berkeley YACC. Bug 16306.
- PDB files in Windows installer. Bug 16307.
- NAS-5GS 5GS network feature support lacks MCSI, EMCN3 two fields (octet 4). Bug 16310.
- Option to change “Packet List” columns header right click pop-up menu behavior. Bug 16317.
- DLT: Dissector does not parse multiple DLT messages in single UDP packet. Bug 16321.
- ISAKMP Dissection: Enhance Source id and Destination ID field of GDOI SA TEK payload for non IP ID type. Bug 16233.
- DOIP: Typo in "identifcation request messages". Bug 16325.
- Toolbar "?" help button - no text/help displayed. Bug 16327.
New and Updated Features:
- There are no new features in this release.
New Protocol Support:
- There are no new protocols in this release.
Updated Protocol Support:
- 802.11 Radiotap, ASN.1 BER, BGP, DLT, DOIP, GSM A RR, GSM A-bis/OML, H264, HTTP, IEC 60870-5-104, IEEE 802.11, IPv4, ISAKMP, NAS 5GS, rtnetlink, SIP, TIPC, USB Audio, USB CDC, and WASSP.
New and Updated Capture File Support:
- 3gpp phone log.
A program that lets you easily manage your laptop connections to WiMAX networks
Mall Creeps
