Wireshark (known as Ethereal until a trademark dispute in Summer 2006) is a fantastic open source multi-platform network protocol analyzer. It allows you to examine data from a live network or from a capture file on disk. You can interactively browse the capture data, delving down into just the level of packet detail you need. Wireshark has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session. It also supports hundreds of protocols and media types. A tcpdump-like console version named tshark is included. One word of caution is that Wireshark has suffered from dozens of remotely exploitable security holes, so stay up-to-date and be wary of running it on untrusted or hostile networks (such as security conferences).
For downloads and more information,
visit the Wireshark homepage.
Wireshark is an amazing piece of kit which has been used by cybersecurity and hacking enthusiasts for many years now it is an excellent tool for sniffing connections and is used by both black hat hackers and white hats for penetration testing you can find documentation on it at www.hacks.icu
Wireshark is an invaluable resource! Not only is the GUI interface very user friendly, the DOS counterpart, dumpcap is also really nice, and stateless. I've used it under Windows and Linux, for wired and wireless networks. Add on the Airpcap device and your radiotap is now integrated with a very powerful Sniffer.
Perhaps I'm missing something. When I goto the wireshark website I don't find anything for linux even though your page says it runs natively on linux. I find source code but nothing else. Is there actually a version for linux or is that a mistake? Thanks. :)
This is an amazing, feature rich, mature and highly useful tool for troubleshooting a wide variety of network problems. The Voip tools are an especially nice component, providing a way to handle an otherwise very tedious process. I would give it ten stars if I could. Thanks to everyone who soo much hard work into this project.
This is by far one of the most important tools for someone that is doing security work. I utilize this tool on every engagement I work, and for learning about new protocols. This is the "Don't leave home without it!"