Packet Analysis with Wireshark

Name: Packet Analysis with Wireshark
Rating: 5 (1 reviews)

Anish Nath

2015年12月 · Packt Publishing Ltd

5.0

1 則評論

電子書

172

頁

評分和評論未經驗證瞭解詳情

關於本電子書

Leverage the power of Wireshark to troubleshoot your networking issues by using effective packet analysis techniques and performing improved protocol analysisAbout This BookGain hands-on experience of troubleshooting errors in TCP/IP and SSL protocols through practical use casesIdentify and overcome security flaws in your network to get a deeper insight into security analysisThis is a fast-paced book that focuses on quick and effective packet captures through practical examples and exercisesWho This Book Is For

If you are a network or system administrator who wants to effectively capture packets, a security consultant who wants to audit packet flows, or a white hat hacker who wants to view sensitive information and remediate it, this book is for you. This book requires decoding skills and a basic understanding of networking.

What You Will LearnUtilize Wireshark's advanced features to analyze packet capturesLocate the vulnerabilities in an application serverGet to know more about protocols such as DHCPv6, DHCP, DNS, SNMP, and HTTP with WiresharkCapture network packets with tcpdump and snoop with examplesFind out about security aspects such as OS-level ARP scanningSet up 802.11 WLAN captures and discover more about the WAN protocolEnhance your troubleshooting skills by understanding practical TCP/IP handshake and state diagramsIn Detail

Wireshark provides a very useful way to decode an RFC and examine it. The packet captures displayed in Wireshark give you an insight into the security and flaws of different protocols, which will help you perform the security research and protocol debugging.

The book starts by introducing you to various packet analyzers and helping you find out which one best suits your needs. You will learn how to use the command line and the Wireshark GUI to capture packets by employing filters. Moving on, you will acquire knowledge about TCP/IP communication and its use cases. You will then get an understanding of the SSL/TLS flow with Wireshark and tackle the associated problems with it. Next, you will perform analysis on application-related protocols. We follow this with some best practices to analyze wireless traffic. By the end of the book, you will have developed the skills needed for you to identify packets for malicious attacks, intrusions, and other malware attacks.

Style and approach

This is an easy-to-follow guide packed with illustrations and equipped with lab exercises to help you reproduce scenarios using a sample program and command lines.

評分和評論

5.0

1 則評論

關於作者

Anish Nath is a software engineer who has more than 10 years of experience. He works at CISCO, and at CISCO, he started using Wireshark for the first time. He is thankful to CISCO. He doesn't speak much, but likes to explore new things that he has not tried or not thought of. He also tries his best to be successful at this. Though he fails a lot of time, this gives him more experience, and when success comes, he thanks all of his efforts that had failed him initially. You can reach him at https://in.linkedin.com/in/anishnath, and his Twitter handle is @anish2good.