We stand with Ukraine to help keep people safe. Join us
All apps
All apps
Categories
AI
Browsing
Safari Extensions
Business
CRMInventory ManagementProject ManagementSEO
Customization
CursorDashboard WidgetsDesktopKeyboard & Touch BarScreensaversWallpapers
Developer Tools
AppleScriptCompilers & InterpretersComponents & LibrariesDatabaseDebuggingIDE SoftwareManuals & TutorialsProgramming LanguagesSource Code ManagementWeb Development
Education
E-ReadersGeographyLanguage LearningLearningMathMedical EducationMusic EducationReference ManagementScienceStudentTranslation
Finance
AccountingBankingBillingCalculators & ConvertersCryptocurrencyFinancial AnalysisInvestment ManagementPersonal FinanceSpreadsheetTrading
Games
ActionAdventureArcadeBoard GamesCard GamesGaming Tools & UtilitiesPuzzlesRacingShootingSimulationSportsStrategyWarWord Games
Graphic Design
3D ModelingAnimationAuthorship & CopyrightCAD SoftwareDesktop PublishingDiagrams & GraphsFontsIconsIllustrationPDFPhotoshop Plug-ins
Health & Fitness
Meditation & RelaxationNutritionWorkout & Fitness
Internet Utilities
Cloud StorageDownload ManagersEmail ClientsEmail ConvertersEmail ServersFile SharingFTP SoftwareInternet Radio PlayersMessengersNewsreadersOnline TV PlayersRemote ManagementRSSServer SoftwareSocial Network Software
Lifestyle & Hobby
BarcodeCookingFood & DrinkGenealogyKidsReligionShoppingSportsTransportWeather
Medical Software
Music & Audio
Audio ConvertersAudio PlayersAudio Plug-insAudio ProductionAudio RecordingAudio StreamingDJ Mixing SoftwareMusic ManagementRadio
Photography
Album & Collage MakersImage CaptureImage ConvertersPhoto EditorsPhoto ManagementPhoto Viewers
Productivity
CalendarsContact ManagementMind MappingPersonal Information ManagersPresentationsRemindersText EditorsTime ManagementWord Processing
Security
Access ControlAd BlockersAntivirusesEncryption & DecryptionFirewallLocker AppsNetwork SecurityParental ControlPassword GeneratorsPassword ManagersPrivacyVPN
System Utilities
AutomationBackupCleanersClocks & AlarmsCompressionContextual MenusDiagnostic SoftwareDisk UtilitiesEmulationFile ManagementFont ManagersMaintenance & OptimizationNetwork SoftwarePrinter & Scanner DriversRecoverySynchronizationUSB DriversVirtualization
Travel
NavigationTransport PlanningTrip Planners
Video
DVD SoftwareVideo ConvertersVideo EditorsVideo PlayersVideo RecordingVideo Streaming
Articles
blog/directory.meta_title_best_appsBest Appsblog/directory.meta_title_reviewsReviewsblog/directory.meta_title_comparisonsComparisonsblog/directory.meta_title_how_toHow-To
EN
When you purchase through links on our site, we may earn an affiliate commission
HomeSystem UtilitiesNetwork SoftwareWireShark

WireShark for Mac

Network protocol analyzer.

Free
In English
Version 4.6.5
4.1
Based on 27 user rates

WireShark overview

Wireshark is one of the world's foremost network protocol analyzers, and is the standard in many parts of the industry. It is the continuation of a project that started in 1998. Hundreds of developers around the world have contributed to it, and it it still under active development.

Wireshark has a rich feature set which includes the following:

  • Standard three-pane packet browser
  • Multi-platform: Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others
  • Multi-interface: Along with a standard GUI, Wireshark includes TShark, a text-mode analyzer which is useful for remote capture, analysis, and scripting
  • The most powerful display filters in the industry
  • VoIP analysis
  • Live capture and offline analysis are supported
  • Read/write many different capture file formats: tcpdump (libpcap), NAI's Sniffer (compressed and uncompressed), Sniffer Pro, NetXray, Sun snoop and atmsnoop, Shomiti/Finisar Surveyor, AIX's iptrace, Microsoft's Network Monitor, Novell's LANalyzer, RADCOM's WAN/LAN Analyzer, HP-UX nettl, i4btrace from the ISDN4BSD project, Cisco Secure IDS iplog, the pppd log (pppdump-format), the AG Group's/WildPacket's EtherPeek/TokenPeek/AiroPeek, Visual Networks' Visual UpTime and many others
  • Capture files compressed with gzip can be decompressed on the fly
  • Hundreds of protocols are supported, with more being added all the time
  • Coloring rules can be applied to the packet list, which eases analysis

What's new in version 4.6.5

New and Updated Features
Bug Fixes
  • wnpa-sec-2026-08 Monero dissector crash. Issue 21066. CVE-2026-5409. wnpa-sec-2026-09 BT-DHT dissector crash. Issue 21067. CVE-2026-5408. wnpa-sec-2026-10 FC-SWILS dissector crash. Issue 21070. CVE-2026-5406. wnpa-sec-2026-11 SMB2 dissector infinite loop. Issue 21073. CVE-2026-5407. wnpa-sec-2026-12 ICMPv6 dissector crash. Issue 21077. CVE-2026-5299. wnpa-sec-2026-13 AFP dissector crash. Issue 21088. CVE-2026-5401. wnpa-sec-2026-14 TLS dissector crash and possible code execution. Issue 21090. CVE-2026-5402. wnpa-sec-2026-15 K12 RF5 file parser crash. Issue 21094. CVE-2026-5404. wnpa-sec-2026-16 SBC codec crash and possible code execution. Issue 21103. CVE-2026-5403. wnpa-sec-2026-17 RDP dissector crash and possible code execution. Issue 21105. CVE-2026-5405. wnpa-sec-2026-18 AMR-NB codec crash. Issue 21111. CVE-2026-5654. wnpa-sec-2026-19 SDP dissector crash. Issue 2111. CVE-2026-5655. wnpa-sec-2026-20 iLBC audio codec crash. Issue 21113. CVE-2026-5657. wnpa-sec-2026-21 Profile import crash and possible code execution. Issue 21115. CVE-2026-5656. wnpa-sec-2026-22 DCP-ETSI protocol dissector crash. Issue 21122. CVE-2026-5653. wnpa-sec-2026-23 BEEP protocol dissector crash. Issue 21120. CVE-2026-6538. wnpa-sec-2026-24 ZigBee protocol dissector crash. Issue 21125. CVE-2026-6537. wnpa-sec-2026-25 DLMS/COSEM protcol dissector infinite loop. Issue 21065. CVE-2026-6536. wnpa-sec-2026-26 Dissection engine zlib decompression crash. Issue 21097, Issue 21098. CVE-2026-6535. wnpa-sec-2026-27 USB HID protocol dissector infinite loop. Issue 21121. CVE-2026-6534. wnpa-sec-2026-28 Dissection engine LZ77 decompression crash. Issue 21127. CVE-2026-6533. wnpa-sec-2026-29 Kismet protocol dissector crash. Issue 21129, Issue 21128. CVE-2026-6532. wnpa-sec-2026-30 SANE protocol dissector infinite loop. Issue 21139. CVE-2026-6531. wnpa-sec-2026-31 DCP-ETSI protocol dissector crash. Issue 21144. CVE-2026-6530. wnpa-sec-2026-32 iLBC audio codec crash. Issue 21145. CVE-2026-6529. wnpa-sec-2026-33 TLS dissector infinite loop. Issue 21151. CVE-2026-6528. wnpa-sec-2026-34 ASN.1 PER protocol dissector crash. Issue 21149. CVE-2026-6527. wnpa-sec-2026-35 RTSP protocol dissector crash. Issue 21173. CVE-2026-6526. wnpa-sec-2026-36 IEEE 802.11 protocol dissector crash. Issue 21008. CVE-2026-6525. wnpa-sec-2026-37 MySQL protocol dissector crash. Issue 21172. CVE-2026-6524. wnpa-sec-2026-38 GNW protocol dissector infinite loop. Issue 21177. CVE-2026-6523. wnpa-sec-2026-39 OpenFlow v5 protocol dissector infinite loops. Issue 21182, Issue 21188. CVE-2026-6521. wnpa-sec-2026-40 OpenFlow v6 protocol dissector infinite loop. Issue 21181. CVE-2026-6520. wnpa-sec-2026-41 MBIM dissector infinite loop. Issue 21184. CVE-2026-6519. wnpa-sec-2026-42 RPKI-Router protocol dissector infinite loop. Issue 21186. CVE-2026-6522. wnpa-sec-2026-43 GSM RP protocol dissector crash. Issue 21189. CVE-2026-6870. wnpa-sec-2026-44 WebSocket protocol dissector crash. Issue 21190. CVE-2026-6869. wnpa-sec-2026-45 SMB2 protocol dissector crash. Issue 21191. wnpa-sec-2026-46 HTTP protocol dissector crash. Issue 21185. CVE-2026-6868. wnpa-sec-2026-47 Sharkd utility memory leak. Issue 21214. wnpa-sec-2026-48 Sharkd utility crash. Issue 21206. wnpa-sec-2026-49 Sharkd utility crash. Issue 21207. wnpa-sec-2026-50 UDS protocol dissector infinite loop. Issue 21225.
The following bugs have been fixed:
  • WSUG: Enabled Protocols dialog needs an update. Issue 20871.
  • Build failure with Qt 6.11 beta. Issue 20965.
  • BLF: Missing 4 byte alignment makes BLF files incompatible with Vector’s tools. Issue 21017.
  • SMB2 decryption keys in smb2_seskey_list are not loaded on restart. Issue 21036.
  • Fuzz job issue: fuzz-2026-03-01-13307044520.pcap. Issue 21049.
  • Window with a message for ssh_strict_fopen. Issue 21051.
  • IEEE 1722.1 Dissector for Stream Input Counters displays FRAMES_RX as "Stream Packets TX" Issue 21055.
  • Wireshark 4.6.4 crashes. Issue 21058.
  • Compilation error with Lua-5.5. Issue 21060.
  • BSOD issue affecting Npcap 1.86. Issue 21062.
  • Adding descriptions to BLF interfaces broke the Capture File Properties view. Issue 21069.
  • Assertion Failure in ws_buffer_remove_start via Malformed Packet Manipulation. Issue 21078.
  • Modbus/RTU fails to decode broadcast frames. Issue 21091.
  • Lua not included unless CMake version >= 3.25. Issue 21093.
  • sshdump: Regression in v4.6.4 – Failed to resolve hostname aliases from .ssh/config on Windows. Issue 21114.
  • Fuzz job crash: fuzz-2026-03-25-13637733472.pcap. Issue 21117.
  • dumpcap TCP@ section-header parsing remote heap corruption. Issue 21132.
  • Netflix BBLog EVENT parsing crash. Issue 21133.
  • On Windows, the Follow Stream feature output is shown in proportional font after zooming. Issue 21137.
  • RTP Streams dialog Time of Day inconsistent behavior. Issue 21138.
  • Sysdig Event Block Integer Underflow. Issue 21140.
  • RF4CE NWK Dissector Heap Buffer Overflow (crash/OOB) Issue 21150.
  • NetXray/Sniffer Padding Integer Underflow. Issue 21152.
  • HTTP/2 ALTSVC/PRIORITY_UPDATE Frame Length Truncation (24-bit to 16-bit) Issue 21155.
  • Snort config parser 2 buffer overflows. Issue 21165.
  • ESP NULL Encryption Integer Underflow triggers Heap Overflow. Issue 21166.
  • Heap buffer overflow in ISO 8583 dissector bin2hex() Issue 21171.
  • wslua: NULL pointer dereference in get_dissector when passing an invalid GUID string to an FT_GUID table. Issue 21194.
  • Fuzz job UTF-8 encoding issue: fuzz-2026-04-16-13947406035.pcap. Issue 21199.
  • Qt: Waterfall bars misisng in conversation overview when "limit to display filter" is active. Issue 21204.
  • text2pcap: heap-buffer-overflow in memmove when -P"dissector" payload exceeds reserved space. Issue 21208.
  • text2pcap : Stack overflow via unbounded "g_alloca" in regex "seqno" Issue 21209.
  • editcap: --novlan integer underflow in sll_remove_vlan_info causes denial of service on short SLL captures. Issue 21210.
  • NAS-5GS - Mapping issue between IEI 0x7B and "S-NSSAI location validity information" IE. Issue 21218.
  • RTP-MIDI dissector reports incorrect value for MTC Quarter Frame data. Issue 21231.
New and Updated Features
  • The Windows installers now ship with Npcap 1.87. They previously shipped with Npcap 1.86.
  • The Windows installers now ship with Qt 6.10.3. They previously shipped with Qt 6.9.3.
New Protocol Support
  • There are no new protocols in this release.
Updated Protocol Support
  • AFP, AIN, ANSI_TCAP, ASAM CMP, ATN-ULCS, BEEP, BGP, BT HCI, BT HCI ISO, BT-DHT, CAMEL, ChargingASE, CMIP, COSEM, DAP, Darwin, DCP ETSI, DECT NR+, DISP, DMX, DNS, E1AP, E2AP, F1AP, FC-SWILS, Frame, FTAM, GLOW, GNW, GOOSE, GPRSCDR, GSM MAP, GSM RP, H.225.0, H.245, H.248, H.450, H.450.ROS, HNBAP, HTTP, HTTP2, ICMPv6, IDMP, IEEE 1609.2, IEEE 1722.1, IEEE 802.11, INAP, IPsec, IPv4, IPv6, ISAKMP, ISO 8583, ITS, JSON 3GPP, Kismet, LCSAP, LDAP, LPPa, M2AP, M3AP, MAS-5GS, MBIM, MMS, Modbus, Monero, MySQL, NBAP, NGAP, NRPPa, OpenFlow 1.4, OpenFlow 1.5, OpenVPN, P1, P22, P7, PCAP, Q932.ROS, QSIG, QUIC, RANAP, RCv3, RF4CE, RF4CE Profile, RNSAP, RPKI-Router, RRLP, RTPS, RUA, S1AP, SABP, SANE, SBcAP, SDP, SGP.22, Signal PDU, SMB2, SSH, T.38, TDSUDP, UDS, WebSocket, X2AP, X509CE, X509IF, X509SAT, XnAP, Z39.50, and ZBD
  • New and Updated Capture File Support
  • 3gpp phone log, Android Logcat Binary, Android Logcat Text, Ascend, BLF, CAM Inspector, Catapult DCT2000, Cinco NetXray/Sniffer, CoSine IPSX L2, DBS Etherwatch, EyeSDN, HP-UX nettl, IBM iSeries, Ixia IxVeriWave, K12, Micropross mplog, MPEG2 transport stream, NetScaler, NetScreen, pcapng, pppd log, Sniffer, Systemd Journal, TCPIPtrace, Toshiba Compact ISDN Router, and Visual Networks
New and Updated File Format Decoding Support
  • There is no new or updated file format support in this release.
Plugin Development Changes
  • On UN*X systems (excluding macOS when running from an app bundle, as with the official installer) extcap binaries are now searched for under the libexec directory by default, e.g., /usr/libexec/wireshark/extcap instead of /usr/lib64/wireshark/extcap or similar. This is the customary place for helper binaries, which as opposed to libraries do not need multiarch support. The location can be overridden via the environment variable WIRESHARK_EXTCAP_DIR. The extcap binaries shipped with Wireshark are installed in the new location, but third party extcaps may need packaging changes. This change was effective in version 4.6.0, but was not explicitly noted in the release notes previously. Note that some distributions do not use a libexec directory, such as Alpine Linux, which does not have multilib support. On such systems extcap binaries should be in the same location as before.

WireShark for Mac

Free
In English
Version 4.6.5
Write a detailed review about WireShark

Write your thoughts in our old-fashioned comment

MacUpdate Comment Policy. We strongly recommend leaving comments, however comments with abusive words, bullying, personal attacks of any type will be moderated.
4.1

(30 Reviews of WireShark)

  • Comments

  • User Ratings

Holypoly
Holypoly
Feb 21, 2025
4.4.4
0.0
Feb 21, 2025
0.0
Version: 4.4.4
Version 4.4.4 requires MacOS 11 (Big Sur) or newer. MacUpdate staff, please update.
Derekcurrie
Derekcurrie
Feb 20, 2025
4.2.11
4.0
Feb 20, 2025
4.0
Version: 4.2.11
v4.4.4 is out. Access it at the dev site. (The MU link is hitting a 404).
Derekcurrie
Derekcurrie
Oct 11, 2024
4.4.1
4.0
Oct 11, 2024
4.0
Version: 4.4.1
v4.4.1 ARM (Apple Silicon) version is at: https://2.na.dl.wireshark.org/osx/Wireshark%204.4.1%20Arm%2064.dmg
Derekcurrie
Derekcurrie
Jun 16, 2022
3.6.6
4.0
Jun 16, 2022
4.0
Version: 3.6.6
There is a native ARM version of Wireshark now as well. M1 & M2 Mac users need not bother with the Intel version. You'll find it at the Dev site: https://www.wireshark.org/download.html
Derekcurrie
Derekcurrie
Apr 15, 2022
3.6.3
4.0
Apr 15, 2022
4.0
Version: 3.6.3
ARM versions of Wireshark are now available. If you have an M1 series Mac, be sure to get the Wireshark macOS Arm 64-bit .dmg version! The general downloads page is here: https://www.wireshark.org/download.html
y66606
y66606
Mar 30, 2024
4.2.4
2.0
Mar 30, 2024
2.0
Version: 4.2.4
CyberSkull
CyberSkull
Dec 10, 2023
4.2.0
5.0
Dec 10, 2023
5.0
Version: 4.2.0
RYU224
RYU224
Mar 6, 2023
4.0.4
4.0
Mar 6, 2023
4.0
Version: 4.0.4
Dogbert1
Dogbert1
Sep 9, 2022
3.6.8
5.0
Sep 9, 2022
5.0
Version: 3.6.8
Derekcurrie
Derekcurrie
Nov 18, 2021
3.4.10
4.0
Nov 18, 2021
4.0
Version: 3.4.10
Frankydin
Frankydin
Jan 6, 2021
5.0
Jan 6, 2021
5.0
Version: null
winonafonda
winonafonda
Nov 12, 2020
5.0
Nov 12, 2020
5.0
Version: null
somers96
somers96
Nov 6, 2020
1.0
Nov 6, 2020
1.0
Version: null
polejai538
polejai538
May 21, 2020
5.0
May 21, 2020
5.0
Version: null
Chocky
Chocky
Mar 1, 2019
5.0
Mar 1, 2019
5.0
Version: null
nomorebugs
nomorebugs
Jul 25, 2018
5.0
Jul 25, 2018
5.0
Version: null
Jpinoniemi
Jpinoniemi
Jan 8, 2015
5.0
Jan 8, 2015
5.0
Version: null
Holgorio
Holgorio
Sep 18, 2014
4.0
Sep 18, 2014
4.0
Version: null
Ededed
Ededed
Apr 22, 2014
4.0
Apr 22, 2014
4.0
Version: null
Alain-devroye
Alain-devroye
Nov 6, 2013
3.5
Nov 6, 2013
3.5
Version: null
Mac-Application
Mac-Application
Jul 27, 2013
5.0
Jul 27, 2013
5.0
Version: null
JaeyoonLee4930
JaeyoonLee4930
Apr 11, 2013
5.0
Apr 11, 2013
5.0
Version: null
bluecheese
bluecheese
Mar 16, 2013
5.0
Mar 16, 2013
5.0
Version: null
Anon42
Anon42
Mar 29, 2012
0.5
Mar 29, 2012
0.5
Version: null
frequencydip
frequencydip
Nov 5, 2011
4.5
Nov 5, 2011
4.5
Version: null
Lachtigall
Lachtigall
Nov 3, 2011
1.5
Nov 3, 2011
1.5
Version: null
JohnKHeath
JohnKHeath
Oct 22, 2011
4.5
Oct 22, 2011
4.5
Version: null
angelowales79
angelowales79
Sep 30, 2011
4.5
Sep 30, 2011
4.5
Version: null
anonymous-aardvark-5710
anonymous-aardvark-5710
Jun 8, 2011
5.0
Jun 8, 2011
5.0
Version: null
FAM9
FAM9
Jun 3, 2011
4.5
Jun 3, 2011
4.5
Version: null
Alcimedes
Alcimedes
May 17, 2007
4.0
May 17, 2007
4.0
Version: null
anilmushi
anilmushi
Nov 30, 2
3.4.5
5.0
Nov 30, 2
5.0
Version: 3.4.5