Wireshark - Security Tool

wireshark network packet analyzer

Wireshark is a network protocol analyzer for Unix and Windows. It helps you to capture and analyze data from a live network or capture file on disk. It provides a smooth interface enables users to interactively browse the captured data. It has the ability to view the reconstructed stream of a TCP session.

Originally named Ethereal, in May 2006 the project was renamed Wireshark due to trademark issues.issues. Wireshark is similar to tcpdump, but it has great user interface and some filtering options.Many organizations don't allow Wireshark on their networks because it is a powerful tool.

Download Wireshark from it's official website (Both Mac and Windows versions are available).

How To Use Wireshark ?

  • First you have to download the Wireshark from the official website and Install it. Don't forget to install Wincap.

  • To capture packets click on "Start".

  • In the main window, there are options for capture packets and stop capturing packets and so on

  • Users can create filters by selecting and right clicking in one piece of data and Goto "Apply as Filter"---> "Selected".

There are a lot more functions available in Wireshark. This tutorial is only for introducing wireshark to you guys. Keep Exploring !!!

No comments

Powered by Blogger.