How to use Wireshark In Kali Linux

Before we begin to learn to hack other networks that need to be able to monitor its network and understand that this is the network traffic, and how to filter it. Wireshark is ideal for this because it is more powerful that nothing came up, and as you may have guessed it was going about it. Wireshark is an ideal weapon for analysis and capture network packets in real time. But the main thing is that it shows them in a very readable format.

Wireshark is equipped with a variety of filters, color coding and many other features that allow you to plunge into the network traffic and check individual packages.

How useful Wireshark for a hacker?

Use your imagination!

I give an example:

let's say you are connected to a foreign network and you need to learn what they are and how it passes through the network? Wireshark ideal solution. After studying the package, you can easily learn all the necessary data. But it was just an example, everyone is free to use it for your need!

How to run Wireshark

The Applications >> of Internet >> Wireshark

 

How to use Wireshark

As you can see he has a nice menu and like all is clear. But in fact it is a very difficult attribute. To start go through the basic functions.

Select the connected network and press start. As you can see began gripping packets and display all traffic on your network.

In order to stop the traffic capture click on the button « the Stop the the running the live capture «

Explanation of different colors in Wireshark

As you can see the different colors of traffic and it's very interesting that they represent. Wireshark uses different colors to help us get to know the different types of traffic.

• Green -          the TCP traffic
• Dark blue -     the DNS traffic
• Dark blue -   the UDP traffic
• Black -            the TCP packets with problems or errors.

 

Saving captured packets

You can easily store all the captured traffic and analyze it later, and open other files already stored traffic.

Filter the traffic capture

We can enter the desired traffic for us filtrovki section « the Filter : » and Wireshark itself will give us clues or can choose by clicking on «the Expression «

We can also create your own filter by clicking on the Analyze >> the Display the filters

How to monitor packages

If you see the desired package you can see its contents.

 

And you can view all the contents of the package, as well as all the data on it.

 

 

What is Wireshark

As you know this is a very powerful thing for traffic view. It is widely used by many professionals to solve problems in the network and network development.

This is the beginning of vsegolish stay tuned articles because we are fully explained to and analyze the attribute to pieces.