Wireshark.org - 51.3 MB ( Open Source)
Wireshark helps network administrators to solve protocol issues by diagnosing the problems in the software protocols.
Wireshark is a famous network analysis or packet sniffer tool protocols.
Wireshark examine data from a live network, and can also take a snapshot of the various communications that work on it at another time. Wireshark proposes to see the "dissector tables" directly from the main window. The application can export objects to SMB screen or display the compiled BPF code for capture filters. Finally, Wireshark supports a variety of protocols such as ADwin, Apache Etch, JSON, reload or Wi-Fi P2P (Wi-Fi Direct).
The interface is quite austere, hides an extremely powerful that only experts can use software correctly.
This software is essential for any network administrator to diagnose problems in the software protocols.
The Windows installers now ship with Qt 5.9.7. Previously they shipped with Qt 5.9.5.
The following vulnerabilities have been fixed:
The Wireshark dissection engine could crash.
The DCOM dissector could crash.
The LBMPDM dissector could crash.
The MMSE dissector could go into an infinite loop.
The IxVeriWave file parser could crash.
The PVFS dissector could crash.
The ZigBee ZCL dissector could crash.
The following bugs have been fixed:
VoIP Calls dialog doesnt include RTP stream when preparing a filter.
Wireshark installs on macOS with permissions for /Library/Application Support/Wireshark that are too restrictive.
Closing Enabled Protocols dialog crashes wireshark.
Unable to Export Objects HTTP after sorting columns.
DNS Response to NS query shows as malformed packet.
Encrypted Alerts corresponds to a wrong selection in the packet bytes pane.
Wireshark crashes/asserts with Qt 5.11.1 and assert/debugsymbols enabled.
ESP will not decode since 2.6.2 - works fine in 2.4.6 or 2.4.8.
text2pcap generates malformed packets when TCP, UDP or SCTP headers are added together with IPv6 header.
Wireshark tries to decode EAP-SIM Pseudonym Identity.
Infinite read loop when extcap exits with error and error message.
MATE unable to extract fields for PDU.
Malformed Packet: SV.
OPC UA Max nesting depth exceeded for valid packet.
TShark 2.6 does not print GeoIP information.
ISUP (ANSI) packets malformed in WS versions later than 2.4.8.
Handover candidate enquire message not decoded.
TShark piping output in a cmd or PowerShell prompt stops working when GeoIP is enabled.
ICMPv6 with routing header incorrectly placed.
IEEE 802.11 Vendor Specific fixed fields display as malformed packets.
text2pcap -4 and -6 option should require -i as well.
text2pcap direction sensitivity does not affect dummy ethernet addresses.
MLE security suite display incorrect.
Message for incorrect IPv4 option lengths is incorrect.
TACACS+ dissector does not properly reassemble large accounting messages.
NLRI of S-PMSI A-D BGP route not being displayed.
Updated Protocol Support
BGP, DCERPC, DCOM, DNS, EAP, ESP, GSM A BSSMAP, IEEE 802.11, IEEE 802.11 Radiotap, IPv4, IPv6, ISUP, LBMPDM, LISP, MLE, MMSE, OpcUa, PVFS, SLL, SSL/TLS, SV, TACACS+, TCAP, Wi-SUN, XRA, and ZigBee ZCL
New and Updated Capture File Support
3GPP TS 32.423 Trace and IxVeriWave
New and Updated Capture Interfaces support