Wireshark
Wireshark is a network protocol analyzer. It captures the packets flowing across a computer network and displays them in a human-readable form. It supports nearly every protocol in common use and can capture on a wide variety of interface types including Ethernet and 802.11. You can filter packets as they are being captured and you apply display filters during analysis. Captures can be saved in a variety of formats so that you can send them to someone else or review them at a later date.
Wireshark helps you understand what's happening on your network at a fundamental level. As Laura Chappell says, "The packets never lie."
It is used just about everywhere. Most major network and software vendors point to Wireshark in their documentation.
Wireshark's original name was Ethereal.
What are a couple of notable examples of how people are using this software?
At Sharkfest (Wireshark's developer and user conference), in June speakers from Google and Citigroup talked about how they use Wireshark for troubleshooting. Wireshark is also being used in the development of the Interplanetary Internet. According to the New York Times, Wireshark was used to track down the GhostNet surveillance network last year.
No comments:
Post a Comment