Wireshark is an open-source network analysis tool that use to capture packets on a network. System admins use these types of packet analyzers to troubleshoot problems that occur within the network. Wireshark provides the ability to capture deeply into each packet that travels in the network.
In other words, Wireshark is capable of filtering hundreds of protocols in a network. Hence Wireshark is an open-source application, you can download it from the Wireshark Foundation website at no cost.
Download Wireshark packet capture
If you wish to capture packets in your network through Wireshark, you need to download and install it on your PC. Wireshark is easy to install on your computer. You can download it from its official website https://www.wireshark.org/download.html to download the application that suits your OS.
As you can see, you can download the latest Wireshark that suits your Operating system. Once the downloading is completed, install it just like other software.During the installation process, a prompt may appear to install Npcap and WinPcap. You need to install both these libraries since they require for live data capture
Start packet capturing with Wireshark
As soon as you open the Wireshark, you can capture traffic on your network by clicking the interface you wish to continue. The following steps will show you how to capture packets in a wireless network.
Once you click on the interface, it will start to show you real-time packets transfer. To start capturing packets, click on Capture> Start.
To stop packet capturing, click on the “Stop” button located on the top left corner of the window.
Viewing packets captured
After you have captured some packets, the captured packets will show up in the packet list pane. Packet list pane is where all the captured packets will show to the user. You can simply select a packet from packet list pane, and view more details on packet detail pane.
Furthermore, you can view each and every packet in a separate window. you simply need to double click on the packet you wish to view the details about.
Wireshark also provides a feature to compare two or more packets. To enable it View> Show Packet-In New Window. Therefore, this feature allows the user to compare one or more packets that have been captured. If you wish to read more articles related to the network, click the following link.