ACKNOWLEDGMENT

We would like to thank our course faculty V. H. Sitapara for giving his almost attention
and guidance for our project. We are especially thankful to head of department PROF.
M. P. PARMAR for his warm response toward us.
We are also thankful to all faculties and our colleagues of the information
technology department who helped us for the project and also provide us useful
information to complete 6th semester micro project.

~ Chhatrola Marut
(236340316012)

~ Parmar Jenish
(236340316052)

~ Randheshiya Raj
(236340316055)

~ Shyam Vaghela
(236340316061)

ii
 INDEX

No. Title Page

1 Project Title 01
2 Project Definition 02
3 Introduction 03
4 What Does Wireshark Actually Do? 04
5 Wireshark's Key Features for Beginners 05
6 Who Uses Wireshark and Why? 06
7 The Good and The Not-So-Good: A Balanced Look 07
8 Presentation 08
9 Conclusion 13
10 Reference 14
 Project Title

[ Wireshark Packet Analytics Tool ]

[Link] Enrollment No. NAME

236340316012 Chhatrola Marut

236340316052 Parmar Jenish

06
236340316055 Randheshiya Raj

236340316061 Shyam Vaghela

1
 Project Definition

Category Description

Objective The primary objective is to capture network traffic in real time

and present it in a human-readable format for detailed
inspection. It is utilized to investigate packet details—such as
source and destination IPs—to facilitate troubleshooting and
security analysis
Outcome The project results in deep visibility into network
communication, allowing users to identify slow networks,
packet loss, and suspicious malware activity. Users can
perform detailed packet-level analysis and gain a practical
understanding of how networks function.
Aim This tool aims to serve as an essential resource for network
analysis, cybersecurity, and IT education. It strives to support
network administrators and developers by offering deep
inspection capabilities for hundreds of network protocols and
aiding in protocol development
Domain The project operates within the domains of Networking,
Cybersecurity, and Information Technology. It is widely
applied in professional settings for network troubleshooting
and security.

2
 INTRODUCTION

•
Imagine your computer network is a busy highway system, but all the cars
(your data) are invisible. How would you know if there's a traffic jam, if a
car is going to the wrong address, or if it's carrying something suspicious?
Wireshark is like a special microscope that lets you see all this invisible
traffic, making it an essential tool for understanding what's happening on
your network.
•
Formally, Wireshark is a free and open-source network protocol analyzer.
It's a powerful piece of software used by a wide range of people—from
curious students learning about the internet to seasoned cybersecurity
professionals—to capture, examine, and troubleshoot the data traveling
across a network.
•
Now, let's look at what this powerful tool actually does.

3
 What Does Wireshark Actually Do?

➢ Wireshark’s core function is to capture network traffic in real-time and display it

in a human-readable format. It intercepts the tiny pieces of data, called packets,
that are constantly flowing between computers, servers, and devices on a
network.

➢ Think of a data packet like a digital envelope or postcard. It has an address for
where it's going, a return address, and information inside. Wireshark lets you
open up and inspect every detail of that envelope.

➢ Using Wireshark, you can see crucial information inside each packet, including:
• Source & Destination: See where the packet came from (Source IP) and where
it's going (Destination IP).

• Protocol Used: Identify the "language" computers are using to communicate,

such as common protocols like TCP/IP and HTTP.

• Packet Contents: For data that is not encrypted, you can see the actual
information being sent, like text from a website or a command sent to a server.

4
 Wireshark's Key Features for Beginners

➢ Wireshark has several "superpowers" that make it so useful for analyzing network
traffic. For a beginner, the most important ones are:

1. Live Capture and Offline Analysis: This feature allows you to grab data from a
live network as it happens, but you can also open and analyze saved capture files,
which is perfect for studying a specific event later on.

2. Deep Protocol Inspection: Wireshark understands the structure of hundreds of

different network protocols, allowing it to break down complex packets and show
you exactly what each part means.

3. Powerful Filtering: This lets you zero in on the exact traffic you want to see by
filtering out all the irrelevant "noise," which is critical on busy networks.

➢ These features are precisely why so many different professionals rely on Wireshark
for their work.

5
 Who Uses Wireshark and Why?

➢ From the classroom to the corporate security center, Wireshark is a go-to tool for a
variety of tasks. The table below shows who uses it and what they use it for.

Who Uses It? (The Job) Why They Use It (The Task)

Network Administrators To find and fix problems like slow networks or

connection issues.
Cybersecurity Professionals To detect suspicious activity, malware, or
unauthorized access.
Students & Educators To practically learn how networking concepts
actually work
Protocol Developers To help test and debug the new network protocols
they create.

➢ While incredibly powerful, it's important to have a balanced view of what the tool
can and cannot do.

6
The Good and The Not-So-Good: A Balanced Look

➢ Advantages

Wireshark offers several significant benefits that have made it a standard in the
industry.

• Free & Open-Source: Anyone can download and use it without cost, and its
code can be inspected by the community.

• Multi-Platform Support: It works whether your computer runs Windows,

Linux, or macOS.

• Detailed Analysis: It provides a deep, packet-level view of your network that

few other tools can match.

• Strong Community: It has a large, helpful community that provides strong

documentation and support for new and experienced users alike.

➢ Limitations

Despite its power, Wireshark has some important limitations to keep in mind.

• Passive Analysis Only: Wireshark is a diagnostic tool for seeing traffic, not a
security tool (like a firewall) that can block it.

• Requires Knowledge: To make sense of the data, you need a basic

understanding of networking concepts.

• Cannot Read Encrypted Traffic: Modern security practices use encryption

(like on HTTPS websites) to protect data, which makes the contents of those
packets unreadable to Wireshark.

➢ Understanding these points helps set the right expectations for what you can
achieve with the tool.
7
Presentation

8
9
10
11
12
 Conclusion

• In conclusion, this project has highlighted Wireshark stands out as a powerful

and essential tool for network analysis, offering users deep visibility into the
complex flows of network communication.

• By capturing traffic in real time and displaying it in a human-readable format,

the software enables the detailed inspection of packet contents and protocols
necessary for diagnosing issues.

• While it provides extensive analysis features, it is important to note that

Wireshark is a passive tool that cannot prevent attacks and requires a certain
level of networking knowledge to utilize effectively

13
 REFERENCE

➢ [Link]

➢ [Link]

➢ [Link]

14