Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Gosh, I feel old. I remember when Ethereal was released and it got me excited. I've sure learned a ton since then thanks to it, and solved a /lot/ of problems. It really changed the world of network traffic analysis, moving network captures away from the world of special laptops and tools (needing to ask the network team to schedule and do a capture) to something that any competent tech could grab.


Which is crazy because wireshark used libpcap, which does like 90% of the work of building the packets for you; the other 10% is parsing headers


It's the header parsing and post-capture filtering and analysis that is the heavy lifting, though.

Just like lots of things, you can collect all the data you want... But getting an actionable result is the trick. Wireshark does that.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: