WireShark - Packet Sniffing Tool
Monday, November 19, 2012
0
comments
WireShark is a nice multi-platform network protocol analyzer. This tool allows users to examine data from network. It understands the structure of all network protocol. It uses pcap to capture network packets. It means it can only capture packets from netoworks that supports pacap. It also allows users to do offline analysis of captured packets.
Wireshark has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session.
It also includes a tcpdump like console version names as tshark.
Before going to give it a try, you must also know that WireShark has suffered from so many remotely exploitable security vulnerabilities. So stay up to date with latest software updates.
It runs on multiple-platform including Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others.
Homepage/Download
Read More on Wikipedia
Categories:
Sniffers
0 comments:
Post a Comment