Different people have different reasons to use Wireshark.

Proprietary alternatives to Wireshark exist, such as Microsoft’s Message Analyzer, TamoSoft’s CommView, Savvius’s OmniPeek and Colasoft Capsa .

But most of these run on Windows only or on a limited range of platforms, while open source Wireshark runs on many platforms including Windows, OS X, Linux and Solaris. Wireshark is also free, and many networking and security professionals have experience working with it.

Perhaps the best reason to use Wireshark is that it is the tool that a hacker will almost certainly be using. Thus, using Wireshark puts you on an equal footing.

You have downloaded Wireshark 2.0 and seen a new welcome screen, right?

Maybe you can watch a video made by Tony Fortunato here, which covers the tool’s new welcome screen, explain where some of the old features went and show some of the new features.

Below are some improvements in Wireshark:

Improved packet capture options. Setting packet options lies at the heart of using Wireshark, and in previous versions they were spread out across many windows. These have been simplified and are now easier to access from one of just two places (Capture Options or Manage Interfaces).

Information about related packets. Information about related packets (such as a DNS request and reply packets, or SYN and ACK packets) is now shown in the main window. For example, an ACKed TCP SYN packet will have a small check mark symbol displayed alongside it in the packet list. This should make it considerably easier to follow protocol “conversations.”

Better, more consistent interface. The Wireshark 2.0.0 user interface looks very similar to the old one, but behind the scenes things have changed. The UI has been rewritten using the Qt application framework, and streamlined so that it will work faster in every platform.

Multi-language support. The new interface supports multiple languages. Wireshark ships with Chinese, French, German, Japanese, Polish and Italian as well as English, and more languages will be supported soon.

Improved statistics dialogues. In the Statistics and Telephony menus, the backend code has been consolidated so that most of Wireshark’s statistics now share common internal logic. This should allow workflow improvements and a much more consistent interface, according to the developers.

Of course you can watch the video on Wireshark official website to learn the basics of the newest Wireshark release or see the Wireshark User’s Guide for more information.