大名鼎鼎的Wireshark不必多说,在win、linux系统中安装也都比较便捷,不过在网上大多写MacOS中如何安装的都狠麻烦,因为他们写的都是安装gtk版本的方式,而wireshark早就投入了qt阵营的怀抱了。

在brew中直接使用brew install wireshark --with-qt即可安装成功,不过安装后会提示:

1
2
3
4
5
6
7
8
9
10
11
> If your list of available capture interfaces is empty
> (default OS X behavior), try the following commands:
> curl https://bugs.wireshark.org/bugzilla/attachment.cgi?id=3373 -o ChmodBPF.tar.gz
> tar zxvf ChmodBPF.tar.gz
> open ChmodBPF/Install\ ChmodBPF.app
> This adds a launch daemon that changes the permissions of your BPF
> devices so that all users in the 'admin' group - all users with
> 'Allow user to administer this computer' turned on - have both read
> and write access to those devices.
> See bug report:
> https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3760

就是由于某些原因Wireshark找不到网卡,按照上面提示解决后再启动即可。

这种方式安装完后的Wireshark是不会在LaunchPad中有图标的,想启动的话在终端中输入wireshark-qt即可启动gui界面版,tshark则启动命令行版。