ProHoster > Блог > xov xwm hauv internet > Wireshark 4.0 Network Analyzer tso tawm

Wireshark 4.0 Network Analyzer tso tawm

Kev tso tawm ntawm ib ceg ruaj khov tshiab ntawm Wireshark 4.0 network analyzer tau tshaj tawm. Cia peb nco qab tias qhov project tau pib tsim los ntawm lub npe Ethereal, tab sis xyoo 2006, vim muaj kev tsis sib haum xeeb nrog tus tswv ntawm Ethereal trademark, cov neeg tsim khoom raug yuam kom hloov lub npe Wireshark project. Txoj haujlwm code raug faib raws li daim ntawv tso cai GPLv2.

Cov kev hloov tshiab tseem ceeb hauv Wireshark 4.0.0:

  • Cov txheej txheem ntawm cov ntsiab lus hauv lub qhov rais loj tau hloov pauv. Cov Ntaub Ntawv Ntxiv Cov Pob Khoom thiab Cov Pob Txha Bytes yog nyob ib sab ntawm sab hauv qab ntawm Pob Npe pawg.
  • Tus tsim ntawm "Kev Sib Tham" thiab "Endpoint" dialog boxes tau hloov pauv.
    • Ntxiv cov kev xaiv rau cov ntawv qhia zaub mov kom hloov pauv txhua kab thiab luam cov khoom.
    • Lub peev xwm los unpin thiab txuas tab yog muab.
    • Ntxiv kev txhawb nqa rau kev xa tawm hauv JSON hom.
    • Thaum siv cov lim dej, cov kab ntawv tau pom tias pom qhov sib txawv ntawm cov pob ntawv uas tau sib phim thiab cov uas tsis tau lim.
    • Kev txheeb xyuas ntau hom ntaub ntawv tau hloov pauv.
    • Cov cim qhia tau txuas nrog TCP thiab UDP ntws thiab muaj peev xwm lim los ntawm lawv.
    • Tso cai nkaum dialogs los ntawm cov ntawv qhia zaub mov.
  • Txhim kho ntshuam hex dumps los ntawm Wireshark interface thiab siv cov lus txib 2pcap.
    • text2pcap muab lub peev xwm los sau cov ntaub ntawv pov tseg hauv txhua hom ntawv txhawb nqa los ntawm lub tsev qiv ntawv wiretap.
    • Nyob rau hauv text2pcap, pcapng yog teem raws li lub neej ntawd hom ntawv, zoo ib yam li cov editcap, mergecap thiab tserk utilities.
    • Ntxiv kev txhawb nqa rau xaiv cov zis hom encapsulation hom.
    • Ntxiv cov kev xaiv tshiab rau kev teev npe.
    • Muab lub peev xwm los txuag dummy IP, TCP, UDP thiab SCTP headers nyob rau hauv dumps thaum siv Raw IP, Raw IPv4 thiab Raw IPv6 encapsulation.
    • Ntxiv kev txhawb nqa rau luam theej duab cov ntaub ntawv siv cov kab lus tsis tu ncua.
    • Kev ua haujlwm ntawm text2pcap siv hluav taws xob thiab "Ntshuam los ntawm Hex Dump" interface hauv Wireshark tau lees paub.
  • Qhov kev ua tau zoo ntawm kev txiav txim siab qhov chaw siv MaxMind databases tau txhim kho zoo.
  • Cov kev hloov pauv tau ua rau cov syntax ntawm kev lim tsheb khiav:
    • Ntxiv lub peev xwm los xaiv cov txheej txheem tshwj xeeb ntawm cov txheej txheem txheej txheem, piv txwv li, thaum encapsulating IP-over-IP, kom rho tawm cov chaw nyob los ntawm cov pob ntawv sab nraud thiab nested, koj tuaj yeem hais qhia "ip.addr#1 == 1.1.1.1" thiab " ip.addr#2 == 1.1.1.2".
    • Cov lus hais tam sim no txhawb nqa "ib yam" thiab "tag nrho" quantifiers, piv txwv li "tag nrho tcp.port> 1024" los sim tag nrho tcp.port teb.
    • Nws muaj cov syntax built-in rau kev qhia cov ntaub ntawv hais txog - ${some.field}, siv yam tsis muaj kev siv macros.
    • Ntxiv lub peev xwm los siv cov lej lej (“+”, “-“, “*”, “/”, “%”) nrog cov zauv teb, cais cov lus qhia nrog curly braces.
    • Ntxiv max(), min() thiab abs() ua haujlwm.
    • Nws raug tso cai los teev cov kab lus thiab hu rau lwm cov haujlwm ua haujlwm sib cav.
    • Ntxiv cov syntax tshiab rau cais cov ntawv sau los ntawm cov cim - tus nqi pib nrog lub ntsiab lus raug kho raws li kev cai lossis kev cai lij choj teb, thiab tus nqi hauv lub kaum sab xis yog kho raws li qhov tseeb.
    • Ntxiv me ntsis tus neeg teb xov tooj "&", piv txwv li, hloov cov khoom ib tus neeg koj tuaj yeem hais qhia "frame[0] & 0x0F == 3".
    • Qhov ua ntej ntawm qhov kev xav thiab tus neeg teb xov tooj tam sim no siab dua li ntawm OR tus neeg teb xov tooj.
    • Ntxiv kev txhawb nqa rau kev qhia qhov tsis tu ncua hauv daim ntawv binary siv "0b" ua ntej.
    • Ntxiv lub peev xwm los siv qhov ntsuas qhov ntsuas tsis zoo rau kev tshaj tawm los ntawm qhov kawg, piv txwv li, txhawm rau txheeb xyuas ob lub bytes kawg hauv TCP header koj tuaj yeem qhia "tcp[-2:] == AA: BB".
    • Kev cais cov ntsiab lus ntawm cov txheej txheem nrog qhov chaw raug txwv; siv qhov chaw es tsis txhob kos npe tam sim no yuav ua rau muaj qhov yuam kev tsis yog ceeb toom.
    • Ntxiv cov kev khiav tawm ntxiv: \a, \b, \f, \n, \r, \t, \v.
    • Ntxiv lub peev xwm los qhia cov cim Unicode hauv \uNNNN thiab \UNNNNNNNNN hom.
    • Ntxiv tus neeg teb xov tooj sib piv tshiab “===” (“all_eq”), uas ua haujlwm tsuas yog hauv cov lus qhia “a === b” tag nrho cov txiaj ntsig ntawm “a” phim “b”. Kuj ntxiv tus neeg teb xov tooj rov qab "!==" ("any_ne").
    • Tus neeg teb xov tooj "~=" tau raug tso tseg thiab "!==" yuav tsum tau siv los hloov.
    • Nws yog txwv tsis pub siv cov lej nrog qhib dot, i.e. tus nqi "7" thiab "7." tam sim no tsis raug thiab yuav tsum tau hloov los ntawm "0.7" thiab "7.0".
    • Lub cav qhia tsis tu ncua hauv lub tshuab lim zaub tau raug hloov mus rau PCRE2 lub tsev qiv ntawv tsis yog GRegex.
    • Kev tuav pov hwm ntawm null bytes yog siv nyob rau hauv cov kab lus qhia tsis tu ncua thiab cov qauv ('\ 0' hauv ib txoj hlua raug kho raws li null byte).
    • Ntxiv rau 1 thiab 0, boolean qhov tseem ceeb tam sim no tseem tuaj yeem sau ua True/TRUE thiab False/FALSE.
  • HTTP2 dissector module tau ntxiv kev txhawb nqa rau kev siv dummy headers los txheeb xyuas cov ntaub ntawv raug ntes yam tsis muaj pob ntawv yav dhau los nrog headers (piv txwv li, thaum txheeb xyuas cov lus hauv kev sib txuas gRPC twb tau tsim lawm).
  • Kev txhawb nqa Mesh Connex (MCX) tau ntxiv rau IEEE 802.11 parser.
  • Kev cia ib ntus (tsis txuag ntawm disk) ntawm tus password hauv Extcap dialog yog muab, yog li tsis txhob nkag mus rau nws thaum rov pib dua. Ntxiv qhov muaj peev xwm los teeb tsa tus password rau extcap ntawm cov kab lus hais kom siv xws li tserk.
  • Cov khoom siv ciscodump siv lub peev xwm los ntes ntawm cov khoom siv raws li IOS, IOS-XE thiab ASA.
  • Ntxiv raws tu qauv txhawb:
    • Allied Telesis Loop Detection (AT LDF),
    • AUTOSAR I-PDU Multiplexer (AUTOSAR I-PduM),
    • DTN Bundle Protocol Security (BPSec),
    • DTN Bundle Protocol Version 7 (BPv7),
    • DTN TCP Convergence Layer Protocol (TCPCL),
    • DVB Selection Information Table (DVB SIT),
    • Txhim kho Nyiaj Ntsuab Kev Lag Luam Interface 10.0 (XTI),
    • Txhim kho Kev Txiav Txim Phau Ntawv Interface 10.0 (EOBI),
    • Txhim kho Kev Lag Luam Kev Lag Luam 10.0 (ETI),
    • FiveCo's Legacy Register Access Protocol (5co-legacy),
    • Generic Data Transfer Protocol (GDT),
    • gRPC Web (gRPC-Web),
    • Host IP Configuration Protocol (HICP),
    • Huawei GRE bonding (GREbond),
    • Locamation Interface Module (IDENT, CALIBRATION, SAMPLES - IM1, SAMPLES - IM2R0),
    • Mesh Connex (MCX),
    • Microsoft Cluster Remote Control Protocol (RCP),
    • Qhib Cov Txheej Txheem Tswjhwm rau OCA/AES70 (OCP.1),
    • Protected Extensible Authentication Protocol (PEAP),
    • REdis Serialization Protocol v2 (RESP),
    • Roon Discovery (RoonDisco),
    • Secure File Transfer Protocol (sftp),
    • Ruaj Ntseg Tus Tswv Cuab IP Configuration Protocol (SHICP),
    • SSH File Transfer Protocol (SFTP),
    • USB Attached SCSI (UASP),
    • ZBOSS Network Coprocessor (ZB NCP).
  • Cov kev cai rau kev tsim ib puag ncig (CMake 3.10) thiab kev vam khom (GLib 2.50.0, Libgcrypt 1.8.0, Python 3.6.0, GnuTLS 3.5.8) tau nce.

Tau qhov twg los: opennet.ru

Ntxiv ib saib