The Wireshark Foundation released Wireshark 3.0.0

The Wireshark Foundation released Wireshark 3.0.0, the latest release of the popular open-source packet analyzer.

The Wireshark Foundation announced the release of Wireshark 3.0.0, the latest release of the popular open-source packet analyzer.

The new version addresses several bugs and introduces tens of new features, it also improved existing features.

The most important changes is the replacement of the WinPcap tool with
Npcap. WinPcap was used by Wireshark to capture and transmit network packets, but it has not been updated since 2013 and is no longer maintained.

Npcap is the Nmap Project’s packet sniffing (and sending) library for Windows. It is based on the WinPcap / Libpcap libraries, but with improved speed, portability, security.

Npcap is still actively maintained by the Nmap Project, it was updated six months ago.

“Npcap is the exciting and feature-packed update to the venerable WinPcap packet capture library. Building on the successful WinPcap legacy, Npcap brings increased speed, security, and Windows 10 support. All of WinPcap’s packet capture and injection features are included, with a few great additions like raw 802.11 frame capture.” report a post on Npcap.

The latest variant of Wireshark adds support for tens of new protocols, it also removes some legacy features and support for older versions of third-party tools (i.e. Qt, GLib, GnuTLS, and Python).

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – Wireshark 3.0.0, hacking)

[adrotate banner=”5″]

[adrotate banner=”13″]