Installing Wireshark 4.0.0 On Windows 11, Upgrading Wireshark 3.6.8 To Wireshark 4.0.0 on Windows 10

Описание к видео Installing Wireshark 4.0.0 On Windows 11, Upgrading Wireshark 3.6.8 To Wireshark 4.0.0 on Windows 10

© 2022 by your own MySchoolProject All rights Reserved. Wireshark 4.0.0
Wireshark 4.0.0 Release Notes (October 4th, 2022):

What’s New
We no longer ship official 32-bit Windows packages starting with this release. If you need to use Wireshark on that platform, we recommend using the latest 3.6 release. Issue 17779

The display filter syntax is more powerful with many new extensions. See below for details.

The Conversation and Endpoint dialogs have been redesigned. See below for details.

The default main window layout has been changed so that the Packet Detail and Packet Bytes are side by side underneath the Packet List pane.

Hex dump imports from Wireshark and from text2pcap have been improved. See below for details.

Speed when using MaxMind geolocation has been greatly improved.

The tools and libraries required to build Wireshark have changed. See “Other Development Changes” below for more details.

Many other improvements have been made. See the “New and Updated Features” section below for more details.

New and Updated Features
The following features are new (or have been significantly updated) since version 4.0.0rc2:

The following features are new (or have been significantly updated) since version 4.0.0rc1:

The macOS packages now ship with Qt 6.2.4 and require macOS 10.14. They previously shipped with Qt 5.15.3.

The Windows installers now ship with Npcap 1.71. They previously shipped with Npcap 1.70.

The following features are new (or have been significantly updated) since version 3.7.2:

The Windows installers now ship with Npcap 1.70. They previously shipped with Npcap 1.60.

The following features are new (or have been significantly updated) since version 3.7.1:

The 'v' (lower case) and 'V' (upper case) switches have been swapped for editcap and mergecap to match the other command line utilities.

The ip.flags field is now only the three high bits, not the full byte. Display filters and Coloring rules using the field will need to be adjusted.

New address type AT_NUMERIC allows simple numeric addresses for protocols which do not have a more common-style address approach, analog to AT_STRINGZ.

The following features are new (or have been significantly updated) since version 3.7.0:

The Windows installers now ship with Qt 6.2.3. They previously shipped with Qt 6.2.4.

The Conversation and Endpoint dialogs have been redesigned with the following improvements:

The context menu now includes the option to resize all columns, as well as copying elements.

Data may be exported as JSON.

Tabs may be detached and reattached from the dialog.

Adding and removing tabs will keep them in the same order all the time.

If a filter is applied, two columns are shown in either dialog detailing the difference between unmatched and matched packets.

Columns are now sorted via secondary properties if an identical entry is found.

Conversations are sorted via second address and first port number.

Endpoints are sorted via port numbers.

IPv6 addresses are sorted correctly after IPv4 addresses.

The HTTP2 dissector now supports using fake headers to parse the DATAs of streams captured without first HEADERS frames of a long-lived stream (such as a gRPC streaming call which allows sending many request or response messages in one HTTP2 stream). Users can specify fake headers using an existing stream’s server port, stream id and direction.

The IEEE 802.11 dissector supports Mesh Connex (MCX).

The “Capture Options” dialog contains the same configuration icon as the Welcome Screen. It is now possible to configure interfaces there.

The “Extcap” dialog remembers password items during runtime, which makes it possible to run extcaps multiple times in row without having to reenter the password each time. Passwords are never stored on disk.

It is possible to set extcap passwords in tshark and other CLI tools.

The extcap configuration dialog now supports and remembers empty strings. There are new buttons to reset values back to their defaults.

Support to display JSON mapping for Protobuf message has been added.

macOS debugging symbols are now shipped in separate packages, similar to Windows packages.

The Event Tracing for Windows (ETW) file reader now supports displaying IP packets from an event trace logfile or an event trace live session.

ciscodump now supports IOS, IOS-XE and ASA remote capturing

New Protocol Support
Allied Telesis Loop Detection (AT LDF), AUTOSAR I-PDU Multiplexer (AUTOSAR I-PduM), DTN Bundle Protocol Security (BPSec), And More

New and Updated Capture File Support
There is no new or updated capture file support in this release.

Major API Changes

CMake 3.10 is required on macOS and Linux.

Getting Wireshark
Wireshark source code and installation packages are available from https://www.wireshark.org/download.html.

#Wireshark
#windows11
#Windows10
MySchoolProject™ All Rights Reserved .M.S.P® 2011-2022

Комментарии

Информация по комментариям в разработке

Похожие видео