De-Coder’s Ring

Consumable Security and Technology

Category: pcap

Threat Hunting: Wireshark

Here’s the delayed 4th video!    Wireshark

I do a quick overview of loading a PCAP file within Wireshark, to do some analysis of packets and TCP reassembly.

Sign up for my mailing list above to get information on new podcasts and videos.

This is the last step in the education before jumping into Suricata next time!

Threat Hunting: tcpdump

This is the second video in my ‘Threat Hunting: With open source software”.   You can find the first video here:  Threat Hunting: The Network and PCAP

This video dives a bit deeper into monitoring networks.  First, we’ll go over how to monitor a modern network, some tips and tricks to help avoid gotchas.

For instance, ever wonder why you can’t see other computers traffic on your network switch? yeah, we talk about that!

We eventually work our way towards using tcpdump.   We’ll monitor live traffic and then store it to disk.  Lots of content in here, so let’s get started!

© 2018 De-Coder’s Ring

Theme by Anders NorenUp ↑