Wireshark ndi ntchito yaulere yomwe imakulolani kuti mugwire ndi kuwona deta kumbuyo ndi kutsogolo pa intaneti yanu, kuti mukhoze kuwombera pansi ndi kuwerenga zomwe zili mu pakiti - yosankhidwa kuti mukwaniritse zosowa zanu. Amagwiritsidwa ntchito kuti athetse mavuto a pakompyuta komanso kupanga ndi kuyesa mapulogalamu. Pulojekitiyi yotseguka ya protocol analyzer imavomerezedwa kuti ndi yowonjezera malonda, ndikupindula nawo mwayi wopereka mphoto kwa zaka zambiri.
Poyambirira kudziwika kuti Ethereal, Wireshark ili ndi mawonekedwe othandizira omwe angagwiritse ntchito deta kuchokera ku ma protekiti mazana osiyanasiyana pa mitundu yonse yayikulu ya makanema. Maphukuti awa a deta akhoza kuwonedwa mu nthawi yeniyeni kapena kusanthuledwa kunja, ndi maofesi ambirimbiri otenga / kufufuza mafomu omwe akuphatikizidwa kuphatikizapo CAP ndi ERF . Zida zolimbitsa thupi zimakulolani kuti muwone mapaketi olembedwa pamatchulidwe angapo otchuka monga WEP ndi WPA / WPA2 .
01 a 07
Kusaka ndi Kuika Wireshark
Wireshark ikhoza kusungidwa popanda mtengo kuchokera ku webusaiti ya Wireshark Foundation kwa machitidwe opangira MacOS ndi Windows. Pokhapokha ngati mutagwiritsa ntchito chithunzithunzi, mukulimbikitsidwa kuti muzitsulola kumasulidwa kwatsopano kumeneku. Pulogalamu yokonza (Windows okha) muyenera kusankha kukhazikitsa WinPcap ngati akulimbikitsidwa, monga zikuphatikizapo laibulale yofunikirako moyo deta capture.
Ntchitoyi imapezekanso ku Linux ndi zina zambiri monga UNIX monga Red Hat , Solaris, ndi FreeBSD. Zowonjezera zofunikira kuti machitidwewa athe kupezeka kumunsi kwa tsamba lokulitsa mu gawo lachitatu la maphwando.
Mukhozanso kukopera foni ya Wireshark patsamba lino.
02 a 07
Momwe Mungatengere Ma Pakiti A Deta
Mukayamba kulumikiza Wireshark skrini yolandiridwa yofanana ndi yomwe yawonetsedwa pamwambayi iyenera kuoneka, ili ndi mndandanda wa mauthenga omwe alipo pa intaneti yanu. Mu chitsanzo ichi, muwona kuti mitundu yotsatirayi ikuwonetsedwa: Network Network , Network , Ethernet , VirtualBox Yokha-Network , Wi-Fi . Kuwonetsedwa kumanja kwa aliyense ndi EKG-kalembedwe mzere wa graph womwe umayimira magalimoto otere pa intaneti.
Kuti muyambe kupanga mapaketi, choyamba musankhe chimodzi kapena zingapo mwa mawonekedwewa podalira kusankha kwanu ndi kugwiritsa ntchito makiyi a Shift kapena Ctrl ngati mukufuna kulemba deta kuchokera pa intaneti zosiyanasiyana panthawi imodzi. Kamodzi kogwirizanitsa kamasankhidwa kuti akwaniritse zolinga, maziko ake adzasungunuka mu blue kapena gray. Dinani ku Capture kuchokera kumndandanda waukulu, womwe uli pamwamba pa Wireshark mawonekedwe. Pamene menyu yotsitsa ikuwonekera, sankhani njira yoyamba.
Mukhozanso kuyambitsa phukusi pogwiritsa ntchito mwachindunji.
- Makibodi: Yesetsani Ctrl + E
- Mouse: Kuti muyambe kulandira mapaketi kuchokera kumtundu wina, dinani kawiri pa dzina lake
- Galasi: Dinani pa batani ya blue shark fin, yomwe ili kumbali yakumanja kwa Warshark
Ndondomeko yowonongeka yatsopano idzayamba, ndi ndondomeko ya phukusi yomwe ikuwonetsedwa muwindo la Wireshark pamene izo zalembedwa. Chitani chimodzi mwa zinthu zomwe zili m'munsimu kuti muleke kulemba.
- Makibodi: Yesetsani Ctrl + E
- Galasi: Dinani pa batani lofiira, lomwe lili pafupi ndi nsomba za shark pazitsulo la Wireshark
03 a 07
Kuwona ndi Kusanthula Pakiti Zamkatimu
Tsopano kuti mwalemba deta yanu yachinsinsi ndi nthawi yoti muwone mapaketi omwe anagwidwa. Monga momwe tawonetsera pa chithunzichi pamwambapa, mawonekedwe a deta omwe ali nawo ali ndi zigawo zitatu zazikulu: Phukusi lazomwe zilipo, phukusi lazomwe zilipo, ndi paketi ya katayi.
Mndandanda wa Zolemba
Phukusi la pakapepala, lomwe lili pamwamba pawindo, limasonyeza mapaketi onse omwe amapezeka mu fayilo yokopera. Pakiti iliyonse ili ndi mzere wake womwewo ndi nambala yake yowerengedwa kwa iyo, limodzi ndi mfundo iliyonse ya deta.
- Nthawi: Timestamp ya pakiti yomwe inagwidwa ikuwonetsedwa m'ndandanda iyi, ndi mawonekedwe osasinthika kukhala chiwerengero cha masekondi (kapena mphindi zochepa) kuchokera pamene fayilo yapaderayo inalengedwa. Kuti musinthe mtundu umenewu kukhala chinthu chamtengo wapatali kwambiri, monga nthawi yeniyeni ya tsiku, sankhani nthawi yowonetsera maonekedwe kuchokera ku Wireshark's View menu - yomwe ili pamwamba pa mawonekedwe akuluakulu.
- Gwero: Mzerewu uli ndi adresse (IP kapena zina) kumene paketi inachokera.
- Kulowa: Mndandanda uwu uli ndi aderesi yomwe pakiti ikutumizidwa.
- Protocol: Dzina la packet's protocol (mwachitsanzo, TCP) lingapezeke m'mbali iyi.
- Kutalika: Pakiti paketi, mwa bytes, imasonyezedwa mu ndimeyi.
- Info: Zowonjezera zowonjezera phukusi zikufotokozedwa pano. Zomwe zili m'ndandanda iyi zingakhale zosiyana malinga ndi paketi.
Phukusi likasankhidwa pamwamba pazithunzi, mukhoza kuona chizindikiro chimodzi kapena zambiri zikupezeka m'ndandanda yoyamba. Mitsegu yotsegula ndi / kapena yotsekedwa, komanso mzere wolunjika wowongoka, ukhoza kusonyeza ngati pakiti kapena gulu la mapaketi onse ali mbali ya kukambirana komwe kumbuyo ndi kwina pa intaneti. Mzere wosweka wosasuntha umasonyeza kuti paketi si mbali ya zokambiranazi.
Dongosolo la Pakiti
Zowonjezerapo, zomwe zimapezeka pakati, zimapereka ma protocol ndi ma prototi a phukusi yosankhidwa mu mawonekedwe osokonezeka. Kuphatikiza kukulitsa chisankho chilichonse, mungagwiritsire ntchito mafayilo a Wireshark payekha malinga ndi mfundo zenizeni komanso kutsatira mndandanda wa deta pogwiritsa ntchito mtundu wa protocol kudzera mndandanda wazomwe mungapezeko - zofikira pakhomopo pakumanja kwanu pa chinthu chomwe mukufunayo pamanja awa.
Zolemba Zophatikiza
Pansi pali paketi ya bytes pane, yomwe imawonetsa deta yaiwisi ya paketi yosankhidwa muwonedwe ka hexadecimal. Dothi la hex ili ndi maola 16 oxadecimal ndi mayina 16 ASCII pafupi ndi deta.
Kusankha gawo lapadera la detayi kumangowonjezera gawo lomwe likugwirizana ndi paketi pazomwe zilipo komanso pambali pake. Zolemba zilizonse zomwe sizingasindikizidwe m'malo mwake zimayimilidwa ndi nthawi.
Mungasankhe kusonyeza deta iyi pang'onopang'ono mosiyana ndi hexadecimal mwa kudindira pomwe paliponse mkati mwazenera ndikusankha njira yoyenera kuchokera mndandanda wamakono.
04 a 07
Kugwiritsa ntchito Wireshark Filters
Chimodzi mwa zinthu zofunika kwambiri zomwe zili mu Wireshark ndizofyuluta zake, makamaka pamene mukugwira nawo mafayilo omwe ali ofunika kwambiri. Tengani mafyuluta akhoza kukhazikitsidwa pamaso pa chowonadi, ndikuwuzani Wireshark kuti alembe mapepala amenewo omwe amakwaniritsa zoyenera zanu.
Zosakaniza zingagwiritsidwenso ntchito pa fayilo yojambula yomwe yapangidwa kale kotero kuti mapaketi ena amasonyeza. Izi zimatchulidwa ngati zowonetsera.
Wireshark imapereka chiwerengero chachikulu cha mafayilo osinthidwa mwachisawawa, kukulolani kuchepetsa chiwerengero cha mapaketi ooneka ndi makina ochepa chabe kapena mouse. Kuti mugwiritse ntchito chimodzi mwa mafayilo omwe alipo, yikani dzina lake mu Apply tsamba loyang'ana fyuluta (yomwe ili pansipa pazenera ya Wireshark) kapena Lowani fayilo yolowera fayilo (yomwe ili pakati pa tsamba lolandirira).
Pali njira zambiri zothandizira izi. Ngati mutadziwa dzina la fyuluta yanu, ingoyikani pazomwe mukufuna. Mwachitsanzo, ngati mutangofuna kuwonetsa mapaketi a TCP mungathe kujambula tcp . Chizindikiro cha autocomplete cha Wireshark chidzawonetsa maina omwe akuyankhidwa pamene mukuyamba kujambula, zomwe zimapangitsa kuti mupeze mosavuta moniker ya fyuluta yomwe mukufuna.
Njira yina yosankhira fyuluta ndiyo kudula pa chithunzi choyimira chizindikiro chomwe chili kumanzere kwa munda. Izi zidzakupatsani menyu omwe ali ndi mafayilo omwe amagwiritsidwa ntchito kawirikawiri komanso njira yosamalira Zithunzi Zosungira kapena Kusamala Zithunzi Zojambula . Ngati mutasankha kusamalira kaya fayizani mawonekedwe omwe angakuwonekere kuti muwonjezere, kuchotsa kapena kusintha zosankha.
Mukhozanso kupeza mafayilo ogwiritsidwa ntchito kale pogwiritsa ntchito chingwe chotsitsa, chomwe chili kumbali ya dzanja lamanja la munda wolowera, zomwe zikuwonetsera mndandanda wazomwe mukulemba.
Kamodzi kokhazikika, kujambulidwa kumagwiritsidwa ntchito mutangoyamba kujambula nyimbo zamagetsi. Kuti mugwiritse fyuluta yowonetsera, komabe, muyenera kutsegula pa batani loyang'ana bwino lomwe likupezeka kumbali yakanja lamanja la munda.
05 a 07
Mitundu Yokongola
Pamene Wireshark akugwira ndi kusonyeza mafayilo amakulolani kuchepetsa mapaketi omwe amalembedwa kapena kuwonetsedwa pawindo, kukongola kwake kumatengera zinthu zomwe zimapangitsa kuti zikhale zosavuta kusiyanitsa pakati pa mitundu yosiyanasiyana ya mapepala malinga ndi mtundu wawo. Chinthu chophweka ichi chimakupatsani inu mwamsanga kupeza mapaketi ena mwasungidwe wosungidwa ndi mtundu wa mzere wawo mu packet list pane.
Wireshark amabwera ndi malamulo okwana 20 osasinthika omangidwa mkati; iliyonse yomwe ingasinthidwe, yolema kapena yochotsedwa ngati mukufuna. Mukhozanso kuwonjezera zatsopano zosungira mthunzi pogwiritsa ntchito malamulo owonetsera maonekedwe, zovomerezeka kuchokera ku Masomphenya. Kuwonjezera pa kutanthauzira dzina ndi fyuluta yoyenera pa lamulo lirilonse, mumapemphedwa kuti muyanjanitse mtundu wachikulire ndi mtundu wa malemba.
Kutsatsa ma phukusi kungathe kusinthidwa ndi kupyolera mu Cholemba cha Pulogalamu ya Colorize , yomwe imapezekanso mkati mwa Masomphenya.
06 cha 07
Ziwerengero
Kuphatikizana ndi tsatanetsatane wa deta ya data yanu yomwe ikuwonetsedwa muwindo lalikulu la Wireshark, zowonjezereka zowonjezera zowonjezera zilipo kudzera mndandanda wa Masamba omwe akupezeka pamwamba pazenera. Izi zimaphatikizapo kukula ndi nthawi yowonjezera fayilo yokhayo, pamodzi ndi malemba ambiri ndi ma grafu omwe akukamba pa mutu kuchokera ku mapepala a kuwonongeka kwa phukusi kuti athe kugawira zopempha za HTTP.
Onetsetsani mafayilo angagwiritsidwe ntchito ku ziwerengero zambirizi kudzera m'makina awo, ndipo zotsatira zitha kutumizidwa ku maofesi osiyanasiyana omwe ali nawo monga CSV , XML , ndi TXT.
07 a 07
Zochitika Zapamwamba
Ngakhale takhala tikugwira ntchito yaikulu ya Wireshark m'nkhaniyi, palinso mndandanda wa zida zina zomwe zilipo mu chida champhamvu ichi chomwe chimakhala chosungidwa kwa ogwiritsa ntchito apamwamba. Izi zikuphatikizapo luso lolemba zolemba zanu zokhazokha m'zinenero za Lua.
Kuti mumve zambiri zokhudza zotsatirazi, onani Wireshark.