旧版本 Wireshark 1.10.0 (x64)
47 scans reported this version clean
- Windows XP x64
- Windows Vista x64
- Windows 7 x64
- Windows Server 2008
- Windows Server 2003 x64
- Windows 8 x64
- Windows Server 2012
- Redirecting the standard output didn’t redirect the output the of -D or -L flags. This fix means that the output of those flags now goes to the standard output, not the standard error, as it did in previous…
Wireshark, the new name for Ethereal, is a protocol analyzer, or packet sniffer application, used for network troubleshooting, analysis, software and protocol development, and education. It has all of the standard features of a protocol analyzer. It allows the user to see all traffic being passed over the network (usually an Ethernet network but support is being added for others) by putting the network card into promiscuous mode.
Wireshark is software that understands the structure of different network protocols. Thus it's able to display encapsulation and single fields and interpret their meaning. Wireshark uses Pcap to capture packets, so it can only capture on networks supported by Pcap.
Wireshark (Ethereal) Features
- Data can be captured from the wire from a live network connection or read from a capture file.
- Captured network data can be browsed via a GUI, or via the TTY-mode tshark program.
- Standard three-pane packet browser
- Capture files compressed with gzip can be decompressed on the fly
- Coloring rules can be applied to the packet list, which eases analysis
更新 : Wireshark 更新
Did You Know?
Wireshark is cross-platform, using the GTK+ widget toolkit to implement its user interface, and using pcap to capture packets; it runs on various Unix-like operating systems including Linux, Mac OS X, BSD, and Solaris, and on Microsoft Windows. There is also a terminal-based (non-GUI) version for Linux called TShark. Wireshark, and the other programs distributed with it such as TShark, are free software, released under the terms of the GNU General Public License.