Munguva pfupi yapfuura kutangwa kwakaziviswae iyo itsva yekuvandudza vhezheni ye network analyzer Wireshark 3.7.2, iyo inonyora nhamba huru yekuchinja kwakakosha, iyo inovandudzwa mumabhokisi ehurukuro, kuvandudzwa mukuratidzwa kwemashoko, kuwedzera kwezvinodiwa uye zvimwe zvinomira pachena.
Wireshark (yaimbozivikanwa seEthereal) ndeye yemahara network protocol analyzer. Wireshark iri inoshandiswa kuongorora network uye mhinduro, sezvo chirongwa ichi chinotibvumidza kuona zvinoitika pane network uye ndiyo de facto yakajairika mumakambani mazhinji vekutengesa uye vasiri-vanoita mapato, vamiriri vehurumende nemasangano edzidzo
Nhau huru dzeWireshark 3.7.2 Budiriro
Mune iyi vhezheni yekuvandudza inounzwa iyo yekupedzisira "Kukurukurirana uye Period" dialogs dzakagadziridzwa patsva ipapo iyo menyu yemukati ikozvino inosanganisira iyo sarudzo yekuvandudza makoramu ese, pamwe chete nezvinhu zvekukopa, data inogona kutumirwa kunze seJSON, ma tabo anogona kupatsanurwa uye kubatanidzwazve kubva munhaurirano, ma tabo anogona zvakare kuwedzerwa kana kubviswa, makoramu zvino anorongwa nemidziyo yemwana kana yakafanana yekupinda yawanikwa, nezvimwe.
Imwe shanduko inomira pachena ndeyekuti ip.flags munda ikozvino ingori iyo yakakwirira mabhiti matatu, kwete iyo yakazara byte. Iwo mafirita ekuratidzira uye mitemo yemavara inoshandisa munda inoda kugadziridzwa.
Izvo zvakare zvakasimbiswa izvo kumhanya kana uchishandisa MaxMind geolocation yakagadziridzwa zvakanyanya. Iwo 'v' (lowercase) uye 'V' (uppercase) switch achinjirwa kuti editcap uye mergecap ienderane nemamwe emirairo mitsetse yekushandisa.
Ukuwo, yakawedzera syntax kuti ienderane neyakatarwa muprotocol stack. Semuenzaniso, muIP pamusoro peIP packet, "ip.addr#1 == 1.1.1.1" inofanana nekero dzekunze uye "ip.addr#2 == 1.1.1.2" inofanana nekero dzekunze.
Iwo epasirese quantifiers "chero" uye "ese" akawedzerwa kune chero anehukama anoshanda. Semuyenzaniso, chirevo chekuti zvese tcp.port › 1024 ichokwadi kana uye chete kana ese tcp.port minda achienderana nemamiriro. Pakutanga, chete maitiro akasarudzika ekudzoreredza chokwadi kana chero ndima yemunda yakatsigirwa.
Mareferensi emumunda, mufomati ${some.field} yava chikamu chesefa ye syntax kuratidza. Pakutanga, dzakashandiswa semacros. Kuitwa kutsva kwacho kunoshanda zvakanyanya uye kune zvimiro zvakafanana neminda yeprotocol, sekufananidza huwandu hwakawanda uchishandisa quantifiers uye rutsigiro rwekusefa.
HTTP2 dissector ikozvino inotsigira kushandiswa kwebogus misoro kuparadzanisa DATA yenzizi dzakatorwa pasina ekutanga HEADERS mafuremu erukova rurefu (senge gRPC yekuridza runhare inobvumira akawanda ekukumbira kana mhinduro meseji kuti itumirwe murukova rweHTTP2). Vashandisi vanogona kudoma misoro yemanyepo vachishandisa server port, id, uye kero yerukova rwuripo.
Yakawedzerwa tsigiro yemamwe mapeji ekuwedzera ekupukunyuka kwemavara mumitsara yakavharirwa mumakotesheni maviri. Pamwe chete neoctal encoding (\ ) uye hexadecimal (\x ), nhevedzano dzekupukunyuka dzinotevera dzeC dzine dudziro imwechete dzava kutsigirwa: \a, \b, \f, \n, \r, \t , \v. Kare, vaingotsigirwa nehunhu husingachinji.
Yeimwe shanduko izvo zvinomira pachena kubva kune iyi vhezheni itsva yekuvandudza
- Kero itsva yerudzi AT_NUMERIC inobvumira kero dzenhamba dziri nyore dzemaprotocol asina kero yemaitiro akajairika, akafanana neAT_STRINGZ.
- Iyo Wireshark Lua API ikozvino inoshandisa iyo lrexlib inosunga yePCRE2.
- Iyo tepi yekutema matanda yakagadziridzwa uye rondedzero yetap_packet_cb yachinja.
- Iyo PCRE2 raibhurari ikozvino inodiwa inotsamira pakuvaka Wireshark.
- Iwe unofanirwa ikozvino kuve neC11 inoenderana compiler kuunganidza Wireshark.
- Perl haichadikanwa kuunganidza Wireshark, asi zvinogona kudikanwa kuunganidza mamwe mafaera epamhepo uye kumhanya kodhi yekuongorora macheki.
- Windows installers ikozvino inotakura neQt 6.2.3.
- Nhaurirano dzeKukurukurirana uye Endpoint dzakagadziridzwa zvakanyanya.
- Windows installers ikozvino inotakura neNpcap 1.60.
- Windows installers ikozvino inotakura neQt 6.2.4.
- text2pcap inotsigira kusarudzwa kweiyo encapsulation mhando yeyakabuda faira fomati uchishandisa mazita mapfupi kubva muraibhurari yewayatap.
- text2pcap yakagadziridzwa kuti ishandise iyo nyowani yekubuda sarudzo uye iyo -d mureza yakabviswa.
Finalmente Kana iwe uchifarira kuziva zvakawanda nezvazvo, unogona kutarisa ruzivo Mune inotevera chinongedzo.