Wireshark

Wireshark is a GUI-based packet sniffing and analyzer tool which captures live packets from a network interface, dissect their protocols, and displays packet contents in human-readable format. Wireshark relies on libpcap/WinPcap library for packet capture, and cross-platform Qt widget toolkit for user interface. The Wireshark GUI allows users to save/load packets to/from a capture file, search for packets, colorize packets based on coloring rules, define display filters, display TCP/UDP conversations, enable/disable protocols, view packet statistics, and more. Wireshark is useful for network troubleshooting (e.g., diagnosing a slow network, analyze HTTP requests/responses) or network forensic analysis (e.g., identify network attack events). Wireshark supports custom packet dissectors in which user write and plug a custom protocol parser into Wireshark. Wireshark comes with a suite of command-line tools, including tshark (command-line version of Wireshark), editcap (pcap packet dump editor) and mergecap (pcap packet dump merger).


  • Website: https://www.wireshark.org/
  • Platform: Cross-platform
  • License: GNU GPLv2
  • Documentation: https://www.wireshark.org/docs/
  • Source repository: git
  • Community: forum mailing list bug tracker
  • Features: ,
  • Similar Software

    ntopng ntopng is a real-time network traffic monitor offering HTML5/AJAX-based web interface. ntopng can visualize elephant flows, IP geolocation, traffic matrix of local networks, and geolocation/AS maps o...
    SmokePing SmokePing is an active network latency measurement tool written in Perl. SmokePing monitors round-trip-time delays, jitters, and packet loss rates against remote hosts over time, and shows historical...
    Nagios Nagios is an industry-standard open-source IT infrastructure and network monitoring software which can monitor server resources (e.g., CPU, memory, disk usage), network equipments (e.g., switches or r...
    GoAccess GoAccess is an open-source, console-based, interactive web server log viewer. It allows you to view and analyze web server logs via ncurses-based terminal interface in real-time. GoAccess parses gro...
    Bro Bro is an open-source network monitoring and intrusion detection system written in C++. Bro collects live packets via the libpcap interface, analyzes packet contents, generates events from the analys...

    Subscribe to Xmodulo List

    Do you want to receive posts about Linux applications and software recommended by Xmodulo List? Enter your email address below, and we will deliver our recommendations straight to your email box, for free. Delivery powered by Google Feedburner.

    Leave a comment

    Your email address will not be published. Required fields are marked *