Wireshark
Read-only mirror of Wireshark's Git repository at https://gitlab.com/wireshark/wireshark. ⚠️ GitHub won't let us disable pull requests. ⚠️ THEY WILL BE IGNORED HERE ⚠️ Upload them at GitLab instead. (by wireshark)
Winshark
A wireshark plugin to instrument ETW (by airbus-cert)
Our great sponsors
| Wireshark | Winshark | |
|---|---|---|
| 10 | 3 | |
| 6,617 | 515 | |
| 2.3% | 2.3% | |
| 10.0 | 0.0 | |
| 7 days ago | about 2 years ago | |
| C | Lua | |
| GNU General Public License v3.0 only | Apache License 2.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Wireshark
Posts with mentions or reviews of Wireshark.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2024-02-01.
-
Wireshark & tcpdump: A Debugging Power Couple
To begin with Wireshark, visit their official website for the download. The installation process is straightforward, but attention should be paid to the installation of command-line tools, which may require separate steps. Upon launching Wireshark, users are greeted with a selection of network interfaces as seen below. Choosing the correct interface, such as the loopback for local server debugging, is crucial for capturing relevant data.
-
Best Hacking Tools for Beginners 2024
Wireshark
- Why is my LG Washing Machine using 3.6GB of data/day?
-
Non-IP networking
If you're very curious as to what is really going on under the hood, I recommend you familiarize yourself with port mirroring for your switch platform of choice, and then use a laptop in promiscuous mode to capture traffic using Wireshark. Failing that, hire a network engineer to interview one of their sales engineers or architects, and have them explain it to you.
-
Biscuit studying IPv6 with me
You should do a hands fins-on lab with Wireshark.
-
How to implement SSL/TLS pinning in Node.js
A great way to test the effectiveness of a pinning implementation is by simulating an MITM attack. Tools like Mitmproxy or Wireshack allow us to create a test environment to monitor, intercept, and proxy network requests for a test host.
-
Russia starts blocking VPN at the protocol (WireGuard, OpenVPN) level
They even have a nice comment explaining the heuristic: https://github.com/wireshark/wireshark/blob/ef9c79ae81b00a63...
* Heuristics to detect the WireGuard protocol: -
Rockwell L5X Vendor, ProductType, and ProductCode Lists
This has been put together for Wireshark, starting on line 1520 https://github.com/wireshark/wireshark/blob/master/epan/dissectors/packet-cip.c
- Ask HN: Is there a tool to generate binary protocol figures out of a spec?
-
Network+ Wireshark classification question
Obviously based on the question you know the answer is a Wireshark-like software and it boils down to how you classify Wireshark. My issue is that Wikipedia refers to it as a Packet Analyzer, Varonis refers to it as a Packet Sniffer, Wireshark refers to itself as a Network Protocol Analyzer, Kali documentation refers to it as a Network Sniffer, Wireshark's README refers to itself as a Network Analyzer OR Sniffer...
Winshark
Posts with mentions or reviews of Winshark.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Hidden traffic Windows
Maybe Winshark could help you capture the process?
- GitHub - airbus-cert/Winshark: A wireshark plugin to instrument Event Tracing for Windows
- Wireshark plugin to work with Event Tracing for Windows
What are some alternatives?
When comparing Wireshark and Winshark you can also consider the following projects:
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
esp_wifi_repeater - A full functional WiFi Repeater (correctly: a WiFi NAT Router)
pyshark - Python wrapper for tshark, allowing python packet parsing using wireshark dissectors
termshark - A terminal UI for tshark, inspired by Wireshark
mtr - Official repository for mtr, a network diagnostic tool
orbit - C/C++ Performance Profiler
Sysdig - Linux system exploration and troubleshooting tool with first class support for containers
WindowsSpyBlocker - Block spying and tracking on Windows
Dripcap
ETWProcessMon2 - ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
grml - Grmls core configuration files for zsh, vim, screen…
wtrace - Command line tracing tool for Windows, based on ETW.