Wireshark Analyzer v3.2.1 released: Open source network protocol analyzer

Wireshark Analyzer is a fantastic multi-platform open-source network protocol analyzer. It can be used to check the analysis of data from the network host to survive, but also look to capture files from the disk. You can interactively browse the capture data, just capture details of the package, you need to analyze. Wireshark has some powerful features, including the ability to rich display filter language and view the reconstructed stream of a TCP session. It also supports hundreds of protocols and media types. It includes a similar tcpdump named tshark the console version. Note that Wireshark emergence of a few dozens of remotely exploitable vulnerabilities, and thus needs to be updated to the latest version, and do not run in an insecure network environment.

Introduction Video: https://www.wireshark.org/video/wireshark/introduction-to-wireshark/

                                 https://www.wireshark.org/video/wireshark/custom-shortcuts/

Changelog

Bug Fixes

The following vulnerabilities have been fixed:

• wnpa-sec-2020-01 WASSP dissector crash. Bug 16324. CVE-2020-7044.

The following bugs have been fixed:

• Incorrect parsing of USB CDC packets. Bug 14587.
• Wireshark fails to create directory if parent directory does not yet exist. Bug 16143.
• Buildbot crash output: randpkt-2019-11-30-22633.pcap. Bug 16240.
• Closing Flow Graph closes (crashes) main GUI window. Bug 16260.
• Wireshark interprets websocket frames after HTTP handshake in a wrong way. Bug 16274.
• A-bis/OML: IPA Destination IP Address attribute contains inverted value (endianness). Bug 16282.
• wiretap/log3gpp.c: 2 * leap before looking ?. Bug 16283.
• Opening shell terminal prints Wireshark: Permission denied. Bug 16284.
• h264: SPS frame_crop_right_offset shown in UI as frame_crop_left_offset. Bug 16285.
• BGP: update of “Sub-TLV Length” by draft-ietf-idr-tunnel-encaps. Bug 16294.
• SPNEGO+GSS-API+Kerberos+ap-options dissection produces “Unknown Bit(s)” expert message. Bug 16301.
• USB Audio feature unit descriptor is incorrectly dissected. Bug 16305.
• Compiling the .y files fails with Berkeley YACC. Bug 16306.
• PDB files in Windows installer. Bug 16307.
• NAS-5GS 5GS network feature support lacks MCSI, EMCN3 two fields (octet 4). Bug 16310.
• Option to change “Packet List” columns header right click pop-up menu behavior. Bug 16317.
• DLT: Dissector does not parse multiple DLT messages in single UDP packet. Bug 16321.
• ISAKMP Dissection: Enhance Source id and Destination ID field of GDOI SA TEK payload for non IP ID type. Bug 16233.
• DOIP: Typo in “identifcation request messages”. Bug 16325.
• Toolbar “?” help button – no text/help displayed. Bug 16327.

Updated Protocol Support

802.11 Radiotap, ASN.1 BER, BGP, DLT, DOIP, GSM A RR, GSM A-bis/OML, H264, HTTP, IEC 60870-5-104, IEEE 802.11, IPv4, ISAKMP, NAS 5GS, rtnetlink, SIP, TIPC, USB Audio, USB CDC, and WASSP

New and Updated Capture File Support

3gpp phone log