Wireshark

We use it mainly for interrogation, analysis, and monitoring of network packets. Additionally where there are issues we use it for troubleshooting and remediating these issues. It's easy to use with a practical and straightforward GUI, which is simple to get accustomed to. Additionally with it being open source costs are almost minimal and it still performs as efficiently, reliably, and admirably as paid-for commercial off-the-shelf software competitors.

• The return on investment is almost negligible as there were almost zero upfront costs. Reports and in-depth analysis/intelligence gathering are virtually free
• We have saved a lot of money by deploying Wireshark but still have a reliable and efficient network analysing application
• Excellent user interface makes it simplea nd easy to use

TCPdump

Atlassian Confluence, Checkmarx

The scope of our use case spans across our entire organization, from troubleshooting specific issues to ensuring secure and efficient network communication. When issues arise, Wireshark helps us pinpoint bottlenecks, latency, and dropped packets. We diagnose connectivity problems, misconfigurations, and performance issues across our network. Wireshark aids our security team in: Detecting suspicious or malicious activity (e.g., unauthorized access, data exfiltration).Investigating security incidents by analyzing captured packets.

• It significantly boosted network reliability
• Wireshark cut troubleshooting time by 40%
• Wireshark improved network performance

I work as a VoIP specialist in contact centers. It regularly happens that I have to study SIP calls to identify faults on gateways during Trunk installation. Wireshark is required.The most common cases are failures linked to firewalls or protocol parameters which are not respected. It also happens that we have to study packet losses between equipments

• + Wireshark traces are a valid proof for end users during issues. "ping pong" war avoided. several days saved
• + No need spend time on probes.
• - Some users hides behind the app without thinking further on the problem

Receiving the TCAP messages has been never easy. This opensource tool easily capture TCAP during the calls for me on different INAP services. We also easily evaluate messages through Wireshark now. And we keep track of packet data information exchange between different networks very conveniently. Wireshark helps us now to easily debug the network data exchange issues and fix them quickly.

• Packet Capture
• Traffic Flow analysis
• Filters in the tool to investigate
• Ability to download and share the log files.

• Identifying bugs in the network has never been smooth and near-perfect.
• Wireshark has made sure our equipment and software is working properly via analyzing network data.
• Analysis of IP packets and Sip call flaws has saved us a lot of time and confident result.

PRTG Network Monitor

Microsoft Teams, (EOL) Cisco CloudCenter, Aspire AWS Cloud Services and Solutions

I have used Wireshark to investigate network issues and mostly find lost IPs on the network. The GUI is amazing as well as the command line's speed works wonders. I also used Wireshark to capture packets to analyse if there were too many DNS requests going through to the local DNS server.

While saying that, I only used it primarily to get a deep understanding of our network.

• Open source as licensing fees adds up in a medium sized business
• Lightweight tool that can be run on my laptop
• Breadth of feature sets it provides

• I loved the tool
• Never spend any money so cannot really talk about ROI
• It did save me time which can be a positive ROI

Nmap

Cisco Meraki MX, Cisco Umbrella, Cisco Secure Access by Duo