Wireshark is free & Open source network packet analyzer that is used for network analysis, troubleshooting, etc. Wireshark is a cross-platform software that is available for various Linux/UNIX distributions, Mac-OS, Solaris, BSD & Windows, etc. It uses GTK to implement user interface & captures packets using PCAP.
Wireshark is quite similar to tcpdump, the major difference between the two is that Wireshark has a graphical interface with built-in filtering options, which make it easy to use. Wireshark provides a number of features, some of those features are,
??? Live packet capture & offline analysis,
??? A number of display filters,
??? Support for hundreds of protocol,
??? Rich VOIP analysis,
??? Read/write feature various file formats,
??? Live data can be read from ethernet port, Bluetooth, USB, Token rings tec