SharkFest’19 US Registration is open at https://sharkfestus.wireshark.org!
About Wireshark
Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on your network at a microscopic level and is the de facto (and often de jure) standard across many commercial and non-profit enterprises, government agencies, and educational institutions. Wireshark development thrives thanks to the volunteer contributions of networking experts around the globe and is the continuation of a project started by Gerald Combs in 1998.
Wireshark has a rich feature set which includes the following:
- Deep inspection of hundreds of protocols, with more being added all the time
- Live capture and offline analysis
- Standard three-pane packet browser
- Multi-platform: Runs on Windows, Linux, macOS, Solaris, FreeBSD, NetBSD, and many others
- Captured network data can be browsed via a GUI, or via the TTY-mode TShark utility
- The most powerful display filters in the industry
- Rich VoIP analysis
- Read/write many different capture file formats: tcpdump (libpcap), Pcap NG, Catapult DCT2000, Cisco Secure IDS iplog, Microsoft Network Monitor, Network General Sniffer® (compressed and uncompressed), Sniffer® Pro, and NetXray®, Network Instruments Observer, NetScreen snoop, Novell LANalyzer, RADCOM WAN/LAN Analyzer, Shomiti/Finisar Surveyor, Tektronix K12xx, Visual Networks Visual UpTime, WildPackets EtherPeek/TokenPeek/AiroPeek, and many others
- Capture files compressed with gzip can be decompressed on the fly
- Live data can be read from Ethernet, IEEE 802.11, PPP/HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, and others (depending on your platform)
- Decryption support for many protocols, including IPsec, ISAKMP, Kerberos, SNMPv3, SSL/TLS, WEP, and WPA/WPA2
- Coloring rules can be applied to the packet list for quick, intuitive analysis
- Output can be exported to XML, PostScript®, CSV, or plain text
The Wireshark Foundation is profoundly grateful to the organizations that have generously supported SharkFest™ educational conferences over the years. Please join us in thanking them by reviewing their Wireshark use-enhancing technology, training, and services either at a SharkFest event, or through clicking on their ads below.
Learn Wireshark
Wireshark Training
Return to the Packet Trenches Part 1: Back to Basics
Return to the Packet Trenches Part 2: Multiplying the Effectiveness of Wireshark’s CLI
CLI Extension Reference Materials used in this presentation:
Wireshark CLI tools & scripting (by Sake Blok)
https://sharkfestus.wireshark.org/assets/presentations18/33.zip
Presentation Video (1:11:14):
TShark Command Line using PowerShell (by Graham Bloice)
https://sharkfesteurope.wireshark.org/assets/presentations17eu/33.7z
Custom LUA dissectors to the rescue in root cause analysis (by Sake Blok)
For more "Packet Trenches" resources, check out these links:
- Watch the replay of the 2016 & 2017 Packet Trenches series and get access to Hansang's traces files.
- The trace files, DB troubleshooting tips, Column setup information, and recommended books are in Hansang's trace files The file to download is: “BackToBasics-Part-1.zip”
- Learn more about Riverbed SteelCentral solutions and SteelCentral Packet Analyzer Info and Free Trial
- Get the latest news on Wireshark and SharkFest'19 & Twitter: @SharkFest_2019
SharkFest™ Wireshark Educational Conferences
Join Gerald Combs, Hansang Bae, Kary Rogers, Sake Blok, Jasper Bongertz, Christian Landström, Phill Shade, and many other packet analysis experts at SharkFest, an immersive Wireshark training experience.
Contact [email protected] for more info.Development
Developer's Guide
The Wireshark Developers's Guide is available in several formats:
Web pages (browseable): One huge page or multiple pages
Web pages (ZIP file): One huge page or multiple pages
PDF
Windows HTML Help
Videos and Presentations
Videos
Hands on with Wireshark (11m 43s)
Hansang Bae shows you tips and tricks used by insiders and veterans. First in a series.

SharkFest Presentations
SharkFest features presentations from a variety of knowledgeable, informative speakers.
SF'18 US: TCP - Tips, Tricks & Traces - Part 1 (Chris Greer)
SF'18 US: TCP - Tips, Tricks & Traces - Part 2 (Chris Greer)
SF'18 ASIA: Using Wireshark to Solve Real Problems for Real People (Kary Rogers)
SF'18 ASIA: Designing a Packet Capture Strategy (John Pittle)
SF'17 EUROPE: My TCP Ain't Your TCP (Simon Lindermann)
SF'17 EUROPE: Turning Wireshark into a Traffic Monitoring Tool (Luca Deri)
SF'17 EUROPE: SMB Handshake: The Devil Lies in the Detail (Eduard Blenkers)
SF'17 US: Practical Tracewrangling - Part 1 (Jasper Bongertz)
SF'17 US: Practical Tracewrangling - Part 2 (Jasper Bongertz)
SF'17 US: Analysis of Multi-point Captures - Part 1 (Jasper Bongertz/Christian Landström)
SF'17 US: Analysis of Multi-point Captures - Part 2 (Jasper Bongertz/Christian Landström)
SF'17 US: Undoing the Network Blame Game (Chris Greer)
SF'16 EUROPE: SSL Troubleshooting (Sake Blok)
SF'15 US: Changing Wireshark with Lua (Hadriel Kaplan)
SF'15 US: Wireshark Dissectors: 3 Ways to Eat Bytes (Graham Bloice)
SF'15 US: Intro to Wireshark: Making Sense of the Matrix (Chris Greer)
SF'15 US: IPv6 Briefly (Jeff Carrell)
SF'15 US: Troubleshooting Router Protocols with Wireshark (John Schreiner)
User Documentation
User's Guide
The Wireshark User's Guide is available in several formats:
Web pages (browseable): One huge page or multiple pages
Web pages (ZIP file): One huge page or multiple pages
PDF
Windows HTML Help
Command-line Manual Pages
UNIX-style man pages for Wireshark, TShark, dumpcap, and other utilities
Display Filter Reference
All of Wireshark's display filters, from version 1.0.0 to present.
Release Notes
Version 0.99.2 to present.
Security Advisories
Information about vulnerabilities in past releases and how to report a vulnerability
Bibliography
Books, articles, videos and more!
Mirroring Instructions
How to set up a wireshark.org mirror
Export Regulations
Our primary distribution point and how it affects you
News and Events

-
SharkFest'19 EUROPE
Wireshark Developer and User Conference
Nov 4-8
Palacio Estoril Hotel
Portugal

-
SharkFest'19 US
Wireshark Developer and User Conference
June 8th - 13th
UC Berkeley, California
Download Wireshark
The current stable release of Wireshark is 2.6.6.