day & night

Wireshark 1.8.6, сетевой снифер
Дата обновления: , перейти к новому сообщению
#1
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif Wireshark 1.0.6

Wireshark (ранее — Ethereal) — программа для анализа пакетов Ethernet и некоторых других сетей (сниффер). Имеет графический пользовательский интерфейс. В июне 2006 года проект был переименован в Wireshark из-за проблем с торговой маркой.

Функциональность, которую предоставляет Wireshark, очень схожа с возможностями программы tcpdump, однако Wireshark имеет графический пользовательский интерфейс и гораздо больше возможностей по сортировке и фильтрации информации. Программа позволяет пользователю просматривать весь проходящий по сети трафик в режиме реального времени, переводя сетевую карту в неразборчивый режим (англ. promiscuous mode).

Программа распространяется под свободной лицензией GNU GPL и использует для формирования графического интерфейса кроссплатформенную библиотеку GTK+. Существуют версии для большинства типов UNIX, в том числе GNU/Linux, Solaris, FreeBSD, NetBSD, OpenBSD, Mac OS X, а также для Microsoft Windows.

Wireshark — это приложение, которое «знает» структуру самых различных сетевых протоколов, и поэтому позволяет разобрать сетевой пакет, отображая значение каждого поля протокола любого уровня. Поскольку для захвата пакетов используется pcap, существует возможность захвата данных только из тех сетей, которые поддерживаются этой библиотекой. Тем не менее, Wireshark умеет работать с множеством форматов исходных данных, соответственно, можно открывать файлы данных, захваченных другими программами, что расширяет возможности захвата.
Материал из Википедии — свободной энциклопедии

Home_http://www.wireshark.org/
Downloads (~12,6 Mb)_http://www.wireshark....-1.0.6.tar.bz2
User is offline
Go topGo end

Ответов(10 - 19)
1.04.2010 - 19:36
#11
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif wireshark 1.2.7

The following bugs have been fixed:

*SNMPv3 Engine ID registration. (Bug 2426)
*Open file dialog always displayed when clicking anywhere on Wireshark. (Bug 2478)
*tshark reports wrong number of bytes on big dumpfiles with -z io,stat. (Bug 3205)
*Negative INTEGER number displayed as positive number in SNMP dissector. (Bug 3230)
*Add support for FT_BOOLEAN fields to wslua FieldInfo. (Bug 4049)
*Wireshark crashes w/ GLib error when trying to play RTP stream. (Bug 4119)
*Windows 2000 support has been restored. (Bug 4176)
*Wrong dissection on be_cell_id_list for bssmap. (Bug 4437)
*I/O Graph dropdown boxes not working correctly. (Bug 4487)
*Runtime Error when right-clicking field and selecting "Filter Field Reference". (Bug 4522)
*In GSM SMS PDU TPVPF showing wrong. (Bug 4524)
*Profinet: May be wrong defined byte meaning. (Bug 4525)
*GLib-CRITICAL ** Message. (Bug 4547)
*Certain EDP display filters trigger Wireshark/tshark runtime error. (Bug 4563)
*Some NCP frames trigger "Dissector bug, protocol NCP". (Bug 4565)
*The encapsulation abbreviation "bluetooth-h4" is ambiguous. (Bug 4613)

New and Updated Features

Downloads (~14,6 Mb)_http://www.wireshark....-1.2.7.tar.bz2
User is offline
Go topGo end
6.05.2010 - 17:42
#12
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif wireshark 1.2.8

The DOCSIS dissector could crash. (Bug 4644), (bug 4646)
Versions affected: 0.9.6 to 1.0.12, 1.2.0 to 1.2.7
The following bugs have been fixed:
HTTP parser limits with Content-Length. (Bug 1958)
MATE dissector bug with GOGs. (Bug 3010)
Changing fonts and deleting system time from preferences, results in wireshark crash. (Bug 3387)
ERF file starting with record with timestamp=0,1 or 2 not recognized as ERF file. (Bug 4503)
The SSL dissector can not correctly resemple SSL records when the record header is spit between packets. (Bug 4535)
TCP reassembly can call subdissector with incorrect TCP sequence number. (Bug 4624)
PTP dissector displays big correction field values wrong. (Bug 4635)
MSF is at Anthorn, not Rugby. (Bug 4678)
ProtoField __tostring() description is missing in Wireshark's Lua API Reference Manual. (Bug 4695)
EVRC packet bundling not handled correctly. (Bug 4718)
Completely unresponsive when run very first time by root user. (Bug 4308)

Downloads (~14,6 Mb)_http://www.wireshark....-1.2.8.tar.bz2
User is offline
Go topGo end
10.06.2010 - 20:41
#13
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif wireshark 1.2.9

* The SMB dissector could dereference a NULL pointer. (Bug 4734)
Versions affected: 0.99.6 to 1.0.13, 1.2.0 to 1.2.8
* J. Oquendo discovered that the ASN.1 BER dissector could overrun the stack.
Versions affected: 0.10.13 to 1.0.13, 1.2.0 to 1.2.8
* The SMB PIPE dissector could dereference a NULL pointer on some platforms.
Versions affected: 0.8.20 to 1.0.13, 1.2.0 to 1.2.8
* The SigComp Universal Decompressor Virtual Machine could go into an infinite loop. (Bug 4826)
Versions affected: 0.10.7 to 1.0.13, 1.2.0 to 1.2.8
* The SigComp Universal Decompressor Virtual Machine could overrun a buffer. (Bug 4837)
Versions affected: 0.10.8 to 1.0.13, 1.2.0 to 1.2.8

The following bugs have been fixed:

* Cannot open file with File -> Open. (Bug 1791)
* Application crash when changing real-time option. (Bug 4035)
* Crash in filter autocompletion. (Bug 4306)
* The XML dissector doesn't allow dots (".") in tags. (Bug 4405)
* Live capture stops when using zlib 1.2.5. (Bug 4708)
* Want to be able to apply decode as to Data Portion of Lan Trace. (Bug 4721)
* SABP short pdu (packet_per.c). (Bug 4743)
* Kerberos pre-auth type constants - MS extensions are wrong. (Bug 4752)
* Check HTTP Content-Length parsing for overflow. (Bug 4758)
* Wrong variable used for proto_tree_add_text() in ptp dissector. (Bug 4773)
* Crash when close window frame of gtk file chooser. (Bug 4778)
* text2pcap expects \n delimited text (instead of \r\n) on win32. (Bug 4780)
* Wrong decoding for BGP ORF. (Bug 4782)
* Crash when Ctrl-Backspacing the display filter. (Bug 4797)
* Acker AFI field incorrect size in PGM dissector. (Bug 4798)
* Fedora 13: wireshark fails to build (linking problem). (Bug 4815)
* The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles. (Bug 4839)
* AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt). (Bug 4838)

Downloads (~)_http://www.wireshark....-1.2.9.tar.bz2
User is offline
Go topGo end
6.08.2010 - 15:13
#14
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif wireshark 1.2.10

* The SigComp Universal Decompressor Virtual Machine could overrun a buffer. (Bug 4867)
CVE-2010-2287
* The GSM A RR dissector could crash. (Bug 4897)
* Due to a regression the ASN.1 BER dissector could overrun the stack.
CVE-2010-2284
* The IPMI dissector could go into an infinite loop.
* Wireshark crashes after configuring new Information column. (Bug 4854)
* Crash triggered when changing display filter from right-mouse pop-up menu via packet-list. (Bug 4860)
* Wireshark crash selecting Inter-Asterisk exchange v2 packet data. (Bug 4868)
* zlib-1.2.5 cause tshark to stop live capture. (Bug 4916)
* Crash when adding SNMP users. (Bug 4926)
* Wireshark via ssh -X on ipv6 link-local address fails to allow capture. (Bug 4945)
* OMAPI dissector fails to parse combined initialization messages. (Bug 4982)
* QUERY_FS_INFO for Macintosh level 0x301 - MacSupportFlags decodes wrong. (Bug 4993)
* SCSI dissector misidentifies ATA PASSTHROUGH command as ACCESS CONTROL IN. (Bug 5037)
* Wrong decoding of GTP Prime (GTP') packets. (Bug 5055)

Downloads (~15 Mb)_http://www.wireshark....1.2.10.tar.bz2
User is offline
Go topGo end
31.08.2010 - 3:46
#15
Урсу



профи!
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 12.045
Регистрация: 23.09.2007
Пользователь №: 513.991


Респектов: 2276
-----XXXXX




Wireshark 1.4.0

» Нажмите, для открытия спойлера | Press to open the spoiler «

Размер: 19,53 МБ.
Скачать:
User is offline
Go topGo end
12.10.2010 - 18:08
#16
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif wireshark 1.4.1

Bug Fixes

The following vulnerabilities have been fixed. See the security advisory for details and a workaround.

* The Penetration Test Team of NCNIPC (China) discovered that the ASN.1 BER dissector was susceptible to a stack overflow. (Bug 5230)

Versions affected: All previous versions up to and including 1.2.11 and 1.4.0.

CVE-2010-????

The following bugs have been fixed:

* Wireshark may appear offscreen on multi-monitor Windows systems. (Bug 553)
* Incorrect behavior using sorting in the packet list. (Bug 2225)
* Cooked-capture dissector should omit the source address field if empty. (Bug 2519)
* MySQL dissector doesn't dissect MySQL stream. (Bug 2691)
* Wireshark crashes if active display filter macro is renamed. (Bug 5002)
* Incorrect dissection of MAP V2 PRN_ACK. (Bug 5076)
* TCP bytes_in_flight becomes inflated with lost packets. (Bug 5132)
* Wireshark fails to start on Windows XP 64bit. (Bug 5160)
* GTP header is exported in PDML with an incorrect size. (Bug 5162)
* Packet list hidden columns will not be parsed correctly from preferences file. (Bug 5163)
* Wireshark does not display the t.38 graph. (Bug 5165)
* Wireshark don't show mgcp calls in "Telephony → VoIP calls". (Bug 5167)
* Wireshark 1.4.0 & VoIP calls "Prepare Filter" problem. (Bug 5172)
* GTPv2: IMSI is decoded improperly. (Bug 5179)
* [NAS EPS] EPS Quality of Service IE decoding is wrong. (Bug 5186)
* Wireshark mistakenly writes "not all data available" for IPv4 checksum. (Bug 5194)
* GSM: Cell Channel Description, range 1024 format. (Bug 5214)
* Wrong SDP interpretation on VoIP call flow chart. (Bug 5220)
* The CLDAP attribute value on a CLDAP reply is no longer being decoded. (Bug 5239)
* [NAS EPS] Traffic Flow Template IE dissection bugs. (Bug 5243)
* [NAS EPS] Use Request Type IE defined in 3GPP 24.008. (Bug 5246)
* NTLMSSP_AUTH domain and username truncated to first letter with IE8/Windows7 (generating the NTLM packet). (Bug 5251)
* IPv6 RH0: dest addr is to be used i.s.o. last RH address when 0 segments remain. (Bug 5252)
* EIGRP dissection error in Flags field in external route TLVs. (Bug 5261)
* MRP packet is not correctly parsed in PROFINET multiple write record request. (Bug 5267)
* MySQL Enhancement: support of Show Fields and bug fix. (Bug 5271)
* [NAS EPS] Fix TFT decoding when having several Packet Filters defined. (Bug 5274)
* Crash if using ssl.debug.file with no password for ssl.keys_list. (Bug 5277)
Updated Protocol Support

ASN.1 BER, ASN.1 PER, EIGRP, GSM A RR, GSM Management, GSM MAP, GTP, GTPv2, ICMPv6, Interlink, IPv4, IPv6, IPX, LDAP, LLC, MySQL, NAS EPS, NTLMSSP, PN-IO, PPP, RPC, SDP, SLL, SSL, TCP

Downloads (~19,3 Mb)_http://www.wireshark....-1.4.1.tar.bz2
User is offline
Go topGo end
23.11.2010 - 21:30
#17
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif wireshark 1.4.2

* Nephi Johnson of BreakingPoint discovered that the LDSS dissector could overflow a buffer. (Bug 5318)

Versions affected: 1.2.0 to 1.2.12 and 1.4.0 to 1.4.1. CVE-2010-4300
* The ZigBee ZCL dissector could go into an infinite loop. (Bug 5303)

Versions affected: 1.4.0 to 1.4.1. CVE-2010-4301

The following bugs have been fixed:

* File-Open Display Filter is overwritten by Save-As Filename. (Bug 3894)
* Wireshark crashes with "Gtk-ERROR **: Byte index 6 is off the end of the line" if click on last PDU. (Bug 5285)
* GTK-ERROR can occur in packets when there are multiple Netbios/SMB headers in a single frame. (Bug 5289)
* "Tshark -G values" crashes on Windows. (Bug 5296)
* PROFINET I&M0FilterData packet not fully decoded. (Bug 5299)
* PROFINET MRP linkup/linkdown decoding incorrect. (Bug 5300)
* [lua] Dumper:close() will cause a segfault due later GC of the Dumper. (Bug 5320)
* Network Instruments' trace files sometimes cannot be read with an error message of "Observer: bad record: Invalid magic number". (Bug 5330)
* IO Graph Time of Day times incorrect for filtered data. (Bug 5340)
* Wireshark tools do not detect and read some ERF files correctly. (Bug 5344)
* "editcap -h" sends some lines to stderr and others to stdout. (Bug 5353)
* IP Timestamp Option: "flag=3" variant (prespecified) not displayed correctly. (Bug 5357)
* AgentX PDU Header 'hex field highlighting' incorrectly spans extra bytes. (Bug 5364)
* AgentX dissector cannot handle null OID in Open-PDU. (Bug 5368)
* Crash with "Gtk-ERROR **: Byte index 6 is off the end of the line". (Bug 5374)
* ANCP Portmanagment TLV wrong decoded. (Bug 5388)
* Crash during startup because of Python SyntaxError in wspy_libws.py. (Bug 5389)

Downloads (~19,2 Mb)_http://www.wireshark....-1.4.2.tar.bz2
User is offline
Go topGo end
12.01.2011 - 19:40
#18
ЭЖД



*nix`оид
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 11.935
Регистрация: 18.09.2004
Пользователь №: 1.679


Респектов: 789
-----XXXX-




ph34r.gif wireshark 1.4.3

Bug Fixes
The following vulnerabilities have been fixed. See the security advisory for details and a workaround.
* FRAsse discovered that the MAC-LTE dissector could overflow a buffer. (Bug 5530)
* FRAsse discovered that the ENTTEC dissector could overflow a buffer. (Bug 5539)
CVE-2010-4538
* The ASN.1 BER dissector could assert and make Wireshark exit prematurely. (Bug 5537)

The following bugs have been fixed:
* AMQP failed assertion. (Bug 4048)
* Reassemble.c leaks memory for GLIB > 2.8. (Bug 4141)
* Fuzz testing reports possible dissector bug: TCP. (Bug 4211)
* Wrong length calculation in new_octet_aligned_subset_bits() (PER dissector). (Bug 5393)
* Function dissect_per_bit_string_display might read more bytes than available (PER dissector). (Bug 5394)
* Cannot load wpcap.dll & packet.dll from Wireshark program directory. (Bug 5420)
* Wireshark crashes with Copy -> Description on date/time fields. (Bug 5421)
* DHCPv6 OPTION_CLIENT_FQDN parse error. (Bug 5426)
* Information element Error for supported channels. (Bug 5430)
* Assert when using ASN.1 dissector with loading a 'type table'. (Bug 5447)
* Bug with RWH parsing in Infiniband dissector. (Bug 5444)
* Help->About Wireshark mis-reports OS. (Bug 5453)
* Delegated-IPv6-Prefix(123) is shown incorrect as X-Ascend-Call-Attempt-Limit(123). (Bug 5455)
*"tshark -r file -T fields" is truncating exported data. (Bug 5463)
* gsm_a_dtap: incorrect "Extraneous Data" when decoding Packet Flow Identifier. (Bug 5475)
* Improper decode of TLS 1.2 packet containing both CertificateRequest and ServerHelloDone messages. (Bug 5485)
* LTE-PDCP UL and DL problem. (Bug 5505)
* CIGI 3.2/3.3 support broken. (Bug 5510)
* Prepare Filter in RTP Streams dialog does not work correctly. (Bug 5513)
* Wrong decode at ethernet OAM Y.1731 ETH-CC. (Bug 5517)
* WPS: RF bands decryption. (Bug 5523)
* Incorrect LTP SDNV value handling. (Bug 5521)
* LTP bug found by randpkt. (Bug 5323)
* Buffer overflow in SNMP EngineID preferences. (Bug 5530)

Downloads (~19,5 Mb)_http://www.wireshark....-1.4.3.tar.bz2
User is offline
Go topGo end
24.06.2012 - 10:03
#19
Урсу



профи!
[SoftoRooMTeaM] Group Icon

Группа: Наши Люди
Сообщений: 12.045
Регистрация: 23.09.2007
Пользователь №: 513.991


Респектов: 2276
-----XXXXX




Wireshark 1.8.0

» Нажмите, для открытия спойлера | Press to open the spoiler «

Размер: 23,29 МБ.
Скачать:
User is offline
Go topGo end
icon10 12.03.2013 - 16:41
#20
KLUCHICK



Вечная память...
[SoftoRooMTeaM] Group Icon

Группа: Администраторы
Сообщений: 5.668
Регистрация: 15.03.2004
Из: The Ural federal district
Пользователь №: 326


Респектов: 3848
-----XXXXX




Wireshark 1.8.6


» What's New «


Download Wireshark 21.8 Mib
User is offline
Go topGo end

Topic Options
Сейчас: 28.03.2024 - 11:08
Мобильная версия | Lite версия