Revision as of 02:02, 25 May 2009
It is a free packet sniffer computer application employed for network troubleshooting, analysis, software and communications protocol development, and education. It is software which understands the structure of different networking protocols. Wireshark utilizes pcap to capture packets; therefore it can only capture the packets on the networks supported by pcap. Using Wireshark, data can be captured "from the wire" from a live network connection or read from a file that records the already-captured packets. Wireshark runs on UNIX and Unix-like systems and on Microsoft Windows.