What’s new in Wireshark 4.4?

bybhawanraj
0

Wireshark 4.4, released in August 2024, introduces several enhancements and new features to improve network analysis capabilities. Key updates include: 

Graphing Enhancements: 

• I/O Graphs: The minimum interval is now 1 microsecond, the Y-axis uses SI prefixes, and bar graphs are rendered more sensibly. Users can reorder the graph list via drag-and-drop, and the legend’s position is adjustable. 

• Sequence Diagrams: The entire graph can be exported as an image, and endpoints with the same address are displayed correctly. 

• TCP Stream Graphs: Improved identification of client and server sides in connections. 

Display Filter Enhancements: 

• Improved support for value strings, including regular expression matching. Arithmetic operations on date and time values are now possible. New functions have been added to test IP address properties and convert unsigned integer types. Display filter functions can now be implemented as plugins. 

Custom Columns: 

• Users can define custom columns using valid field expressions, such as arithmetic calculations, logical tests, and raw byte representations. This flexibility extends to custom output fields for TShark. 

Automatic Profile Switching: 

• Wireshark now supports automatic switching between configuration profiles based on display filters, enhancing workflow efficiency. 

Performance Improvements: 

• Wireshark can be built with zlib-ng instead of zlib for compressed file support, offering substantial speed improvements. The official Windows and macOS packages include this feature. 

Protocol Support: 

• New protocol support includes Allied Telesis Resiliency Link, ATN Security Label, Bit Index Explicit Replication (BIER), and others. Existing protocol dissectors have been updated for more accurate analysis. 

Lua Scripting: 

• Support for Lua 5.3 and 5.4 has been added, while support for Lua 5.1 and 5.2 has been removed. The Windows and macOS installers now ship with Lua 5.4.6. 

These updates enhance Wireshark’s functionality, making it a more powerful tool for network protocol analysis.
Tags:

Post a Comment

If you have any doubt, Questions and query please leave your comments

Previous Post Next Post