Wireshark (known as Ethereal until a trademark dispute in Summer 2006)
is a fantastic open source multi-platform network protocol analyzer. It
allows you to examine data from a live network or from a capture file on
disk. You can interactively browse the capture data, delving down into
just the level of packet detail you need. Wireshark has several powerful
features, including a rich display filter language and the ability to
view the reconstructed stream of a TCP session. It also supports
hundreds of protocols and media types. A tcpdump-like
console version named tshark is included. One word of caution is that
Wireshark has suffered from dozens of remotely exploitable security
holes, so stay up-to-date and be wary of running it on untrusted or
hostile networks (such as security conferences).
Get it @ https://www.wireshark.org/
No comments:
Post a Comment