Wireshark is the world foremost network protocol analyzer, and is the de facto standard in many industries and educational institutions.
Thorough inspection of hundreds of protocols and new ones are added all the time
Capture and offline analysis
Standard browser packet of three component
Multi-platform: Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others
Network captured data can be accessed via a GUI, or via the TTY-mode tshark utility
Filters display the strongest in the industry
Rich VoIP analysis
Read / write many different formats to capture file
Capture files compressed with gzip can be decompressed on the fly
The data can be read directly from Ethernet, IEEE 802.11, PPP / HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, and others (depending on your platfrom)
Decryption support for many protocols, including IPsec, ISAKMP, Kerberos, SNMPv3, SSL / TLS, WEP, and WPA/WPA2
Coloring rules can be applied to the packet list for quick, intuitive analysis
The output can be exported to XML, PostScript ®, CSV or plain text
download
www.wireshark.org
