Wireshark

The world's foremost network protocol analyzer — see what's happening on your network at a microscopic level.

Category: securityFirst released: 1998Created by: Gerald CombsLicense: GPL-2.0Platforms: macOS, Linux, Windows

Wireshark is the world's foremost and most widely-used network protocol analyzer, allowing you to capture and interactively browse network traffic at a microscopic level. It supports deep inspection of hundreds of protocols, with more added continuously, and provides powerful display filters for drilling down into specific traffic patterns. Live packet capture works on Ethernet, Wi-Fi, Bluetooth, USB, and many other interfaces, with offline analysis of previously saved capture files. Wireshark's rich VoIP analysis includes call-flow diagrams and playback, while its TCP stream analysis features reconstruct entire sessions. With a graphical interface showing packet details in a three-pane view and a comprehensive set of protocol dissectors, Wireshark is the essential tool for network troubleshooting, protocol development, and security analysis used by network engineers, developers, and security professionals worldwide.

Links

Official Website Documentation GitHub

Key Features

Deep inspection of hundreds of protocolsLive capture and offline analysisPowerful display filtersVoIP analysis with call flowsTCP stream reconstructionThree-pane packet browserCross-platform (Qt-based)