CloudShark 4.0.0

October 24th, 2024

We are thrilled to announce CloudShark Enterprise 4.0, a major release that introduces a completely redesigned packet viewer interface alongside significant system component upgrades. This release also marks a pivotal shift in our deployment strategy, now offering CloudShark as a pre-configured OVA (Open Virtual Appliance) image for seamless installation across all major virtualization platforms. This new approach dramatically simplifies both initial deployment and future upgrades while ensuring consistent performance across different environments.

What’s New?

Revolutionary New Packet Viewer

At the heart of CloudShark Enterprise 4.0 is our completely redesigned Packet Viewer interface. This new implementation delivers substantial improvements to the way you interact with packet captures:

  • Flexible Column Management: The new interface introduces resizable and reorderable columns, with intuitive drag-and-drop functionality for adding new columns to your view from the packet decode tree.
  • Enhanced Packet Navigation: The addition of a comprehensive status bar provides instant visibility into your capture file statistics, matching packet percentages, and selected protocol information.
  • Improved Display Filtering: Our enhanced autocomplete system now shows both field names and descriptions, making it easier than ever to construct precise display filters.
  • Advanced Stream Analysis: Enhanced Follow-Stream functionality in the packet bytes (hex dump) pane provides seamless visibility into protocol conversations for the selected packet.
  • Streamlined Annotations: Packet comments are now displayed more efficiently as popups or columns in the packet list, providing better visibility without obscuring packet data.

Simplified Deployment

CloudShark Enterprise 4.0 introduces a new OVA-based deployment model that:

  • Provides a pre-configured virtual appliance ready for immediate use
  • Supports all major virtualization platforms including VMware, VirtualBox, and other standards-compliant hypervisors
  • Ensures consistency across different deployment environments
  • Streamlines future upgrades and maintenance

System Component Upgrades

CloudShark Enterprise 4.0 includes major upgrades to core analysis components:

  • Wireshark 4.4: Bringing the latest protocol dissectors and analysis capabilities
  • Zeek 6: Enhanced network security monitoring features
  • Suricata 7: Updated threat detection and analysis capabilities

The platform now runs exclusively on Rocky Linux 8, providing a modern, stable foundation for enterprise deployments.

S3 Storage Integration

New support for S3-compatible storage systems allows for more flexible disk storage options for fresh installations.

Bug Fixes and Other Changes

  • Various UI performance improvements and optimizations

Upgrading

CloudShark Enterprise 4.0 introduces a new OVA-based deployment model that will significantly simplify future upgrades.

Detailed migration instructions for moving your existing data and settings to the new OVA deployment are available in our OVA Migration Guide.