|Wireshark 2.4 Increases Protocol Coverage|
|Written by Kay Ewbank|
|Tuesday, 25 July 2017|
There's a new release of Wireshark, the network protocol analyzer, with more protocols supported and experimental support for 32-bit and 64-bit Windows installer packages.
Wireshark can be used to capture and interactively browse the traffic running on a computer network. You can use Wireshark to inspect the network traffic of a particular program you're concerned about, to analyze the traffic flow on your network, or when you've got network problems.
Wireshark makes use of filters and color coding to make the traffic more understandable and help you track down and inspect individual packets. Wireshark is open source, and runs on most computing platforms including Windows, macOS, Linux, and UNIX.
The application is available as a 32-bit and 64-bit installer for Windows, and as a portable version for Windows as well. One of the new features is experimental support for 32-bit and 64-bit Windows installer packages (msi), though it is recommended that you use these independently of the NSIS (.exe) installers.
There are 43 newly supported protocols, of which some of the more interesting include Citrix NetScaler RPC and Network Exchange, Facebook Zero, and Netgear Ensemble, along with options for NetScaler, IndigoCare, and NVMe among many others. The full list is in the Wireshark release notes. The release notes also say that too many protocols have been updated for them to supply a list.
WIthin the application, there are a number of minor changes. These include the ability to view Wireshark full screen so you can see more packets; SS7 Point Codes can be resolved into names with a hosts-like file; and TShark can now export objects like the other GUI interfaces. There's an experimental timeline view for 802.11 wireless packet data; and support has been added for TLS 1.3 dissection and decryption.
or email your comment to: firstname.lastname@example.org
|Last Updated ( Tuesday, 25 July 2017 )|