ProHoster > Блог > labaran intanet > Wireshark 3.6 Sakin Analyzer Network

Wireshark 3.6 Sakin Analyzer Network

Bayan shekara guda na ci gaba, an fitar da sabon reshe mai tsayi na Wireshark 3.6 mai nazarin hanyar sadarwa. Bari mu tuna cewa an fara aiwatar da aikin a ƙarƙashin sunan Ethereal, amma a cikin 2006, saboda rikici tare da mai mallakar Ethereal alamar kasuwanci, an tilasta masu haɓakawa su sake suna aikin Wireshark. Ana rarraba lambar aikin a ƙarƙashin lasisin GPLv2.

Mabuɗin sabbin abubuwa a cikin Wireshark 3.6.0:

  • An yi canje-canje ga tsarin ƙa'idodin tace zirga-zirga:
    • Ƙara goyon baya ga ma'anar "a ~= b" ko "a any_ne b" don zaɓar kowace ƙima sai ɗaya.
    • Ƙara goyon baya ga "a not in b" syntax, wanda yayi kama da "ba a cikin b".
    • An ba da izinin saka kirtani ta hanyar kwatanci tare da danyen kirtani a cikin Python, ba tare da buƙatar tserewa haruffa na musamman ba.
    • Kalmomin "a != b" yanzu koyaushe iri ɗaya ne da furcin "!(a == b)" lokacin da aka yi amfani da shi tare da ƙimar filaye da yawa ("ip.addr!= 1.1.1.1" yanzu daidai yake da ƙayyade "ip.src! = 1.1.1.1. 1.1.1.1 da ip.dst!= XNUMX").
    • Ya kamata a raba abubuwan da aka saita a yanzu ta hanyar waƙafi kawai, an haramta iyakance ta sarari (watau ka'idar 'http.request.method a cikin {"SAMU""HEAD"}' yakamata a maye gurbinsu da 'http.request.method a cikin {" SAMU", "KAI"}'.
  • Don zirga-zirgar TCP, an ƙara tace tcp.completeness, wanda ke ba ku damar raba rafukan TCP dangane da yanayin ayyukan haɗin gwiwa, watau. Kuna iya gano kwararar TCP waɗanda aka yi musayar fakiti don kafa, canja wurin bayanai, ko ƙare haɗi.
  • An ƙara saitin "add_default_value", ta inda zaku iya tantance tsoffin ƙima don filayen Protobuf waɗanda ba a jera su ba ko tsallakewa yayin ɗaukar zirga-zirga.
  • Ƙara goyon baya don karanta fayiloli tare da zirga-zirgar zirga-zirga a cikin tsarin ETW (Binciken Bidiyo don Windows). Hakanan an ƙara tsarin rarraba don fakitin DLT_ETW.
  • Ƙara yanayin "Bi rafin DCCP", yana ba ku damar tacewa da cire abun ciki daga rafukan DCCP.
  • Ƙara goyon baya don tantance fakitin RTP tare da bayanan mai jiwuwa a tsarin OPUS.
  • Yana yiwuwa a shigo da fakitin da aka katse daga jujjuya rubutu zuwa tsarin libpcap tare da saita ƙa'idodin rarraba bisa ga maganganun yau da kullun.
  • Mai kunna rafin RTP (Telephony> RTP> RTP Player) an sake fasalinsa sosai, wanda za'a iya amfani dashi don kunna kiran VoIP. Ƙara goyon baya don lissafin waƙa, ƙara yawan amsawar mu'amala, bayar da ikon ɓata sauti da canza tashoshi, ƙara zaɓi don adana sautunan da aka kunna a cikin nau'ikan fayilolin .au ko .wav masu yawa.
  • An sake tsara maganganun da ke da alaƙa da VoIP (Kiran VoIP, Rafukan RTP, Binciken RTP, RTP Player da Flows na SIP), waɗanda yanzu ba su da tsari kuma ana iya buɗe su a bango.
  • An ƙara ikon waƙa da kiran SIP dangane da ƙimar Kira-ID zuwa maganganun "Follow Stream". Ƙara dalla-dalla a cikin fitarwar YAML.
  • An aiwatar da ikon sake haɗa ɓangarorin fakitin IP waɗanda ke da ID na VLAN daban-daban.
  • An ƙara mai sarrafa don sake gina fakitin USB (USB Link Layer) da aka katse ta amfani da masu nazarin kayan aiki.
  • Ƙara "--export-tls-session-keys" zaɓi zuwa TShark don fitarwa maɓallan zaman TLS.
  • An canza maganganun fitarwa a cikin tsarin CSV a cikin mai nazarin rafin RTP
  • Samuwar fakiti don tsarin tushen macOS sanye take da guntu Apple M1 ARM ya fara. Fakitin na'urorin Apple tare da kwakwalwan kwamfuta na Intel sun haɓaka buƙatu don sigar macOS (10.13+). An ƙara fakitin 64-bit masu ɗaukuwa don Windows (PortableApps). Ƙara goyon baya na farko don gina Wireshark don Windows ta amfani da GCC da MinGW-w64.
  • Ƙara goyon baya don ƙaddamarwa da ɗaukar bayanai a cikin tsarin BLF (Informatik Binary Log File).
  • Ƙara goyon bayan yarjejeniya:
    • Ka'idar Haɗin Haɗin Bluetooth (BT LMP),
    • Tsarin yarjejeniya na Bundle 7 (BPv7),
    • Tsarin Tsarin Tsarin Tsarin Tsaro na 7 (BPSec),
    • CBOR Abun Sa hannu da Rufewa (COSE),
    • E2 Application Protocol (E2AP),
    • Binciken Bidiyo don Windows (ETW),
    • Babban Eth Header (EXEH),
    • Tracer Haɗin Haɗin Babban Ayyuka (HiPerConTracer),
    • ISO 10681,
    • Kerberos SPAKE
    • linux psample protocol,
    • Cibiyar Sadarwar Haɗin Kai ta Gida (LIN),
    • Sabis na Aiki na Microsoft,
    • O-RAN E2AP,
    • O-RAN fronthaul UC-jirgin sama (O-RAN),
    • Opus Interactive Audio Codec (OPUS),
    • PDU Sufuri Protocol, R09.x (R09),
    • RDP Dynamic Channel Protocol (DRDYNVC),
    • RDP Graphic tashar bututun tashar Protocol (EGFX),
    • RDP Multi-transport (RDPMT),
    • Bugawa na Gaskiya-Tsarin Kuɗi Mai Kyau (RTPS-VT),
    • Bugawa-Subscribe Waya Protocol (an sarrafa) (RTPS-PROC),
    • Sadarwar Sadarwar Ƙwaƙwalwar Ƙwaƙwalwa (SMC),
    • Siginar PDU, SparkplugB,
    • Yarjejeniyar Aiki tare na Jiha (SSyncP),
    • Tsarin Fayil ɗin Hoto mai alamar (TIFF),
    • TP-Link Smart Home Protocol,
    • Farashin UAVCAN DSDL
    • UAVCAN / CAN,
    • Ka'idar Lantarki Mai Nisa ta UDP (RDPUDP),
    • Van Jacobson PPP matsawa (VJC),
    • Duniyar Yakin Duniya (WOWW),
    • X2 xIRI kaya (xIRI).

source: budenet.ru

Add a comment