If analyzing data traffic and network protocols are something you are interested in, Wireshark is the go-to tool. It’s the world’s leading cross-platform network analyzer tool that’s loved by ethical hackers and security researchers.
Last week, the Wireshark team quietly released the all-updated Wireshark 3.0.0 with numerous user interface improvements. Additionally, to make the software lightweight, tons of legacy features and libraries have been removed.
Before giving you a brief summary about the new features, let me tell you that the legacy GTK+ interface has been dropped and Qt has been adopted. The team has made this change to make sure that the software delivers a clean and nice experience on all supported platforms.
Here’s a brief list of some of the other major changes in Wireshark 3.0.0:
- IP map feature added back
- Support for Swedish, Russia, and Ukrainian
- Build system now produces reproducible builds
- Windows installer now ships with Npcap instead of WinPcap
- BOOTP dissector renamed to DHCP; SSL dissector renamed to TLS; APT-X renamed to aptX
Apart from these features, Wireshark 3.0.0 also adds support for numerous new protocols, including Apple Wireless Direct Link (AWDL), DXL, E1AP (5G), EVS (3GPP TS 26.445 A.2 EVS RTP), WireGuard, etc. You can find the complete list of protocols and features on the announcement page.
To download Wireshark 3.0.0 installation packages and source code, feel free to visit this link. Many Linux distros provide their own Wireshark package and you can update the same using the package management system of your distro.
Also Read: Best Free Hacking Apps For Android