Wireshark ibasa rekushanda rinokubvumira iwe kutora nekuona iyo data inofamba mberi nepamusoro pamutambo wako, ichipa kukwanisa kudonha pasi uye kuverenga zviri mukati pepaketani imwe - yakanatswa kuti uwane zvido zvako. Inowanzoshandiswa kunetsa zvinetso zvematambudziko pamwe nekuvandudza nekuedza software. Iyi yakazaruka-source protocol analyzer inobvumwa zvikuru semuwandisi wemabhizimisi, ichiwana chikamu chayo chakanaka chezvikwereti mumakore.
Pakutanga inozivikanwa seEthereal, Wireshark inoshandisa inoshandiswa-user-friendly interface iyo inogona kuratidza data kubva kumazana emitemo yakasiyana pane yose mikuru mitambo. Iyi data data packets inogona kuonekwa munguva chaiye-kana kuongororwa pasina, nevakawanda zvekutora / kutevera mafaira mafaira akatsigirwa kusanganisira CAP uye ERF . Zvishandiso zvekushandura zvishandisi zvinokubvumira kuona michina yakavharidzirwa yezvirevo zvakasiyana-siyana zvakakurumbira zvakadai seWEP uye WPA / WPA2 .
01 of 07
Kuchengeta nekuisa Wireshark
Wireshark inogona kubudiswa pasina mari kubva paWireshark Foundation website ye macOS uye Windows operating system. Kunze kwekuti iwe uri wepamusoro-shandisi, zvinokurudzirwa kuti iwe utone chete kusunungurwa kwakasimbiswa kwekupedzisira. Panguva yekugadzirisa nzira (Windows chete) unofanira kusarudza zvakare kuisa WinPcap kana inokurudzirwa, sezvo inosanganisira raibhurari inotarisirwa kuti iwane data yekubata.
Chirongwa chacho chinowanikwawo kuLinux uye nezvimwe zvakawanda zvinonzi UNIX-like platforms kusanganisira Red Hat , Solaris, uye FreeBSD. Zvinyorwa zvinotarisirwa kuti zvirongwa izvi zvishandise zvinogona kuwanikwa kumucheto peji rekutsvaga muChikamu chechitatu cheChipatara.
Iwe unogonawo kukopera Wireshark's source code kubva peji ino.
02 of 07
Nzira Yokutora Data Packets
Paunotanga kutanga Wireshark chinyorwa chekugamuchira zvakafanana nechiratidzwa pamusoro apa chinofanira kuonekwa, chine urongwa hwehutachiwana hwehutano hwehutachiona pane yako ikozvino. Mumuenzaniso uyu, uchacherechedza kuti mhando dzekubatanidza dzinotevera dzinoratidzwa: Bluetooth Network Connection , Ethernet , VirtualBox Host-Only Network , Wi-Fi . Kuratidzwa kune kurudyi kweumwe neumwe iE EKG-style line grafu inomiririra kufamba kwepamusoro kune iyo inoshandiswa.
Kutanga kutora mapaketi, chokutanga sarudza imwechete kana yakawanda yezvikwata izvi nekusarudza pane zvaunosarudza (s) uye uchishandisa Shift kana Ctrl makiyi kana uchida kunyora data kubva kune dzakawanda mitambo panguva imwe chete. Kana imwe nguva yerudzi rwekubatanidza yakasarudzwa nokuda kwekutora, mamiriro acho ezvinhu achazununguswa mune bhuruu kana grey. Dzvanya kuCapture kubva kumenyu huru, iri kumusoro weWireshark interface. Apo inodonha imenyu inowanika, sarudza iyo Kutanga sarudzo.
Iwe unogonawo kutanga phaketti kutora neimwe yezvitsvaga zvinotevera.
- Keyboard: Chura Ctrl + E
- Mouse: Kutanga kutora mapepa kubva kune imwe nzvimbo, tsanidza kaviri pazita racho
- Bharibariti: Dzvanyira pa bhatani rebhuruu shark fin, riri kuruboshwe rworuboshwe rweWarshark toolbar
Nzira yekugara yakararama ikozvino inotanga, nemashoko ezvipakiti zvakaratidzwa muwindo reWireshark sezvazvakanyorwa. Ita chimwe chezviito pasi apa kuti usiye kugamuchira.
- Keyboard: Chura Ctrl + E
- Bharibariti: Dzvanyira pabhokisi rakatsvuka, riri pedyo necheka shark paWarshark toolbar
03 of 07
Kuona uye Kuongorora Packet Zviri mukati
Iye zvino zvawakanyora imwe nhamba ye data network ndiyo nguva yekutarira mapepa akabatwa. Sezvinoratidzwa mumufananidzo wepamusoro, iyo yakatorwa data data inosanganisira zvikamu zvitatu zvikuru: Packet list pane, iyo packet details pane, uye packet bytes pane.
Packet List
Iko pakatetepa pane pane, iri kumusoro kwehwindo, inoratidza mapepa ose anowanika mune yakashandiswa faira faira. Pareti imwe neimwe ine mutsara wayo uye inotarisana nhamba inopiwa kune iyo, pamwe chete nemashoko aya e data.
- Nguva: Nguva yekutsvaga iyo iyo pakiti yakatorwa inoratidzwa munharaunda iyi, uye iyo yakashata yakagadzirirwa kuva nhamba yemasekondi (kana kuti mashoma masekondi) kubva pane iyi mahwendefa ekutora yakatanga kusikwa. Kuti uchinje chimiro ichi kune chimwe chinhu chingangodaro chakanyanyobatsira, chakafanana nenguva chaiyo yezuva, sarudza Time Display Format chinobva kuWireshark's View menu - iri pamusoro pekukurukurirana kukuru.
- Mhedziso: Iyi koromo ine kero (IP kana imwe) iyo pakiti yakatanga.
- Enda kune imwe: Iyi koromo ine kero iyo pakiti iri kutumirwa ku.
- Purogiramu: Izwi reproketet's protocol (kureva, TCP) rinogona kuwanikwa mune iyi koromo.
- Urefu: Pakati refu, mumabhete, inoratidzwa munharaunda iyi.
- Nyaya: Zvimwe zvizere nezvepaketani zvinoratidzwa pano. Zviri mukati mekoroni iyi zvinogona kusiyana zvakasiyana zvichienderana nepakiti yepakiti.
Apo paketani yakasarudzwa panzvimbo yepamusoro, unogona kuona imwe kana zviratidzo zvinowanikwa muhomwe yekutanga. Vhura uye / kana mabhigi akavharwa, pamwe chete nemutsara wakarurama wakananga, unogona kuratidza kana kana kwete pakiti kana boka remapakiti zvose chikamu chekukurukurirana kwakafanana nekwepamusoro pamutambo. Mutsara wakaputsika wakarurama unoratidza kuti pakiti haisi chikamu chekutaurirana.
Packet Details
Izvo zvinyorwa pane, zvinowanikwa mukati, zvinopa zvirevo uye protocol masimi eparetet yakasarudzwa mumusangano unogadzikana. Mukuwedzera pakuwedzera sarudzo imwe neimwe, unogonawo kushandura mafiriji eWireshark mumwe nomumwe maererano nemamwe mashoko pamwe chete nekutevera mafashamo e data zvichienderana nehuwandu hweprotocol kuburikidza nemuongorori wemamiriro ezvinhu - zvinowanikwa nechokuita zvakarurama pamusi wako pane chinhu chaunoda mukati meiyi pane.
Packet Bytes
Pasi pasi ndiro packet bytes pane, iyo inoratidza data yakasvibiswa yepaketani yakasarudzwa mune maonero hexadecimal. Iyi hex dump ine 16 hexadecimal byte uye 16 ASCII bytes pamwe chete nedeta offset.
Kusarudza chikamu chakati che deta iyi zvinowanzosimbisa chikamu chayo chinowirirana mu packet details pane uye pamwe chete. Chero zvinyorwa zvisingagoni kudhindwa pane zvinomiririrwa nenguva.
Iwe unogona kusarudza kuratidza iyi deta zvinyorwa zvishoma kana ichienzaniswa ne hexadecimal nekukanda kwakarurama chero kupi zvako mukati memakamuri uye kusarudza chakanaka chakanaka kubva mumenyu yemamiriro ezvinhu.
04 of 07
Achishandisa Wireshark Filters
Chimwe chezvinhu zvinonyanya kukosha chinowanikwa muWireshark ndechekushambadzira kwayo, kunyanya kana uri kutarisana nefaira dzakakosha muhukuru. Tora mafaira anogona kuiswa pamberi pezvokwadi, achirayira Wireshark kuti inyore chete mapepa aya anogadzirisa zvaunotaura.
Zvinyorwa zvinogonawo kushandiswa kune faira yekubata iyo yakatosikwa kuitira kuti zvimwe mapaketi anoratidzwa. Izvo zvinonzi zvinoratidzirwa.
Wireshark inopa nhamba huru yemafuta akafananidzwa kare, zvichikuita kuti udzikise pasi nhamba yezvikwata zvinowanikwa nemashoko mashomanana chete kana mouse inotsvaga. Kuti ushandise imwe yezvipiritsi izvi zviripo, isa zita rayo muApply pane kuratidza firiji inopinda munda (iri pasi pacho pasi peWireshark toolbar) kana kuti Pinda inotora firimu yechirongwa chekuita (iri pakati pekugamuchira screen).
Kune nzira dzakawanda dzekuita izvi. Kana iwe uchitoziva zita remutambo wako, ingorinyorera mumunda wakakodzera. Somuenzaniso, kana iwe chete waida kuratidza mapepa eTCP iwe unogona kutora tcp . Wairahark's autocomplete feature icharatidza mazita akakurumbira paunotanga kuisa, zvichiita kuti zvive nyore kuwana mhando yakakodzera yefaira rauri kutsvaga.
Imwe nzira yekusarudza firiji ndeyekutsvaga pane bhutikisi-sekiya yakagadzirirwa kuruboshwe-rutivi rwebasa rekupinda. Izvi zvichapa mharidzo ine zvimwe zvezvinyorwa zvinowanzoshandiswa-kushandiswa uyewo sarudzo yekutarisira Capture Filters kana Kuti Gadzirisa Mafirimu Ekuratidza . Kana ukasarudza kugadzirisa kana kunyora unhu hunoonekwa huchaonekwa uchibvumira kuti uwedzere, kubvisa kana kuchinja mafaira.
Iwe unogonawo kuwana mafirita akafanirwa-kare-kushandiswa nokusarudza museve pasi, uri kuruoko rworudyi rwebindu rekupinda, iro rinoratidza rondedzero yezvakaitika kare.
Kana imwe yakagadzirirwa, tora mafaira achashandiswa pakarepo paunotanga kukodhidza network network. Kuti uise chiratidzo chekuratidzira, zvisinei, iwe uchada kubhota pane bhodhi yemutsara yakarurama inowanikwa kuruboshwe-kuruoko rworudyi rweminda yekupinda.
05 of 07
Coloring Rules
Kunyange zvazvo Wireshark inotora uye inoratidza mafiritsi inokubvumira kuderedza mapepa ayo akanyorwa kana kuratidzwa pahwindo, kushandiswa kwaro kwemaitiro kunotora zvinhu danho rinopfurikidza nekuita kuti zvive nyore kusiyanisa pakati pemhando dzakasiyana-siyana dzepaketti zvichienderana nehumwe humwe. Izvi zvinoita kuti uite nokukurumidza kuwana mamwe mapepa mukati mekuchengetedzwa kwawakachengetwa nemuvara wemuvara wemuganhu mukati mepaketani pane pane.
Wireshark inouya nemitemo inosvika makumi maviri nematatu inoshandiswa mukati; imwe neimwe inogona kugadziriswa, yakaremara kana kubviswa kana uchida. Iwe unogonawo kuwedzera mutsva anobva mumvuri-based based kuburikidza nemitemo yemirairo yehutano, acessible kubva pane View menu. Mukuwedzera pakutsanangurira zita uye firiji zvinoshandiswa pamutemo mumwe nomumwe, unobvunzwawo kuti ubatane zvose ruvara rwemuvara uye ruvara rwemavara.
Packet colorization inogona kugadziriswa uye kupfurikidza neColorize Packet List yakasarudzwa, inowanikwa mukati meMenyu yemufananidzo .
06 of 07
Statistics
Mukuwedzera kune tsanangudzo yakajeka pamusoro pehutano hwepaneti yako inoratidzwa pawindo reWireshark, huwandu humwe hutachiwana hunobatsira hunowanika kuburikidza neMenu inodonhedzwa yeMatata inowanikwa kumusoro kwekona. Izvi zvinosanganisira ukuru uye ruzivo rwemazuva pamusoro pekutora faira pachayo, pamwe chete nemazita akawanda emaroto uye mairafu ari muhurukuro kubva pakutevedzana kukurukurirana kukurukurira kutakura kugovera kwekumbira kweHTTP.
Kuratidza mafikisi anogona kushandiswa kune dzakawanda zvezviyero izvi kuburikidza nevanopindirana, uye mitsva inogona kutumirwa kuzvikwata zvakasiyana-siyana zvefaira kusanganisira CSV , XML , uye TXT.
07 of 07
Zvinyorwa Zvitsva
Kunyangwe takafukidzira zvizhinji zveWireshark's main functionality munyaya ino, panewo zvakare mutsara wezvimwe zvinowanikwa zviri munhare iyi ine simba inowanzochengeterwa vashandisi vepamusoro. Izvi zvinosanganisira kukwanisa kunyora purogiramu yako pachedu mushure mekutaurira mutauro weLua.
Kuti uwane mamwe mashoko pamusoro pezvinhu izvi zvakasimudzwa, shandisa Wireshark's user's guide guide.