To my knowledge I gained from 2 days working with wireshark, it is used to analyze network traffic and we could use filters to filter them. Is that right? Can we do something more than that using this tool?

edit

What are you trying to do?

Check Out Resources

These are the some of the features that Wireshark has that you may want to check out:

• Decrypt captures with TLS, Kerberos, 802.11, etc.
• Export a file: transferred over http, ftp, etc.
• Follow TCP conversations
• Diagnose common network problems by having Wireshark highlight them for you (i.e. Expert Information)
• View any structured data. You could use it to read an email archive if the right dissectors were available, relating to
• Lua Scripting Interface for anything Wireshark lacks. People have built dissectors to read network traffic generated from sources like World of Warcraft and Ethereum.

Changing Data

In terms of changing data, these are some things that Wireshark can do:

• editcap allows you to change random bytes or chop off packet data after N bytes.
• If you filter traffic, you can save the result, and the file will be "changed".
• You can add comments to packets or to the packet capture as a whole.
• You can reorder packets to match time order if they are unordered.

Depending on what you are trying to do, Wireshark may or may not be the right tool.

edit: Add caveats

Wireshark cannot change the data, it's a passive packet analysis tool.

However, within the field of packet analysis Wireshark has many powerful features. A free source of excellent information can be found at the SharkFest retrospective sites:

• SharkFest US.
• SharkFest EU.