Wireshark 3.6 is the latest version of the Network Protocol Analyzer. The program is available for Windows, Mac, and Linux operating systems, and the latest version introduces a number of improvements, including support for a wide range of new protocols.

Wireshark can be used to capture and analyze network traffic; it is often used by network administrators and security researchers to inspect the behavior of certain applications or services.

Our first mention of Wireshark dates back to 2009.

Corded shark 3.6

Interested users will find downloads of Wireshark 3.6 on the official project website. Applications are provided for Windows (laptop and installer) and Mac OS. The source code is also listed on the download page.

Windows packages include the latest stable version of Npcap, which Wireshark needs for live packet capture. A 64-bit portable version of Wireshark for Windows is now included. Note that a packet capture driver must be installed manually if the portable version of Wireshark is used.

The change log lists all changes in the new Wireshark 3.6 release. You can check it out for a full overview of what’s new and changed.

Below is a short list of the most important changes in the new version:

  • New 64-bit portable version for Windows.
  • The Windows installer is included with Npcap 1.55.
  • Wireshark supports event tracking for Windows.
    • “A new extcap drive named ETW is created which can now open an etl file, convert all events in the file to DLT_ETW packets, and write to a specified FIFO destination.”
  • Support for Mac OS ARM 64, with a package now provided.
  • Mac version requires Mac OS 10.13 or newer. It includes Qt 5.15.3.
  • Items in the display filter set must be separated by commas.
  • Literal strings can be specified using raw string syntax.
  • RTP Player has been improved. It can now play multiple streams in a row, has a playlist, which supports adding and removing streams, muting the stream, has a more responsive user interface and is now under Telephony> RTP > RTP Player.
  • VoIP dialogs are now modeless and can be left open in the background.
  • IP fragments between public IPv4 addresses are now reassembled even if they have different VLAN IDs.
  • TShark can export TLS session keys.
  • The user guide has been updated.
  • Support for many new protocols eg 5G Lawful Interception (5GLI), Bluetooth Link Manager Protocol (BT LMP), Bundle Protocol version 7 (BPv7).

Now you: do you use tools like Wireshark?

Summary

Wireshark 3.6 network protocol analyzer is available

Article name

Wireshark 3.6 network protocol analyzer is available

The description

Wireshark 3.6 is the latest version of the Network Protocol Analyzer, which introduces a large number of new features and improvements.

Author

Martin Brinkmann

Editor

Ghacks Technology News

Logo

Advertising


Source link