Cover Image
Read Now

Wireshark network security a succinct guide to securely administer your network using Wireshark

If you are network administrator or a security analyst with an interest in using Wireshark for security analysis, then this is the book for you. Basic familiarity with common network and application services terms and technologies is assumed

Bibliographic Details
Main Author: Verma, Piyush
Format: eBook
Language:English
Published: Birmingham, UK Packt Publishing 2015
Series:Community experience distilled
Subjects:
Computer Networks / Security Measures / Computer Programs
Réseaux D'ordinateurs / Qualité / Contrôle
Network Performance (telecommunication) / Fast
Network Performance (telecommunication) / Http://id.loc.gov/authorities/subjects/sh00000222
Computer Networks / Quality Control / Fast
Computers / Security / Viruses & Malware / Bisacsh
Computer Networks / Quality Control
Performance Des Réseaux (télécommunications)
Réseaux D'ordinateurs / Sécurité / Mesures / Logiciels
Computers / Networking / Network Protocols / Bisacsh
Computer Networks / Security Measures / Computer Programs / Fast
Online Access:
Collection: O'Reilly - Collection details see MPG.ReNa
Table of Contents:
  • Identifying POP3 password crackingHTTP basic authentication
  • Dictionary-based attacks
  • Detecting FTP password cracking
  • Miscellaneous attacks
  • FTP bounce attack
  • DNS zone transfer
  • SSL stripping attack
  • Complementary tools to Wireshark
  • Xplico
  • Sysdig
  • Pcap2XML
  • SSHFlow
  • Important display filters
  • Filters based on protocols
  • DNS
  • FTP
  • HTTP
  • Filters based on unique signatures and regular expressions
  • Regular expressions
  • Nailing the CTF challenge
  • Summary
  • Chapter 4 : Probing E-mail Communications
  • Chapter 3 : Analyzing Threats to LAN SecurityAnalyzing clear-text traffic
  • Viewing credentials in Wireshark
  • FTP
  • Telnet
  • HTTP
  • TFTP
  • Reassembling data stream
  • Case study
  • Examining sniffing attacks
  • MAC flooding
  • ARP poisoning
  • Analyzing network reconnaissance techniques
  • Examining network scanning activities
  • Detect the scanning activity for live machines
  • Identify port scanning attempts
  • Other scanning attempts
  • OS fingerprinting attempts
  • Detect password cracking attempts
  • Brute-force attacks
  • ""Cover ""; ""Copyright""; ""Credits""; ""About the Author""; ""Acknowledgment""; ""About the Reviewers""; ""www.PacktPub.com""; ""Table of Contents""; ""Preface""; ""Chapter 1: Getting Started with Wireshark â€? What, Why, and How? ""; ""Sniffing""; ""The purpose of sniffing""; ""Packet analysis""; ""The tools of the trade""; ""What is Wireshark?""; ""The Wireshark interface â€? Before starting the capture ""; ""Title""; ""Menu""; ""Main toolbar""; ""Filter toolbar""; ""Capture frame""; ""Capture Help""; ""The Files menu""; ""Online""; ""The Status bar""; ""First packet capture""
  • ""E-mail forensics challenges""""Challenge 1 â€? Normal login session""; ""Challenge 2 â€? Corporate espionage""; ""Analyzing attacks on e-mail communications""; ""Detecting SMTP enumeration""; ""Using an auxiliary module in Metasploit ""; ""Analyzing SMTP relay attack""; ""Important filters""; ""Summary""; ""Chapter 5 : Inspecting Malware Traffic""; ""Gearing up Wireshark""; ""Updated columns""; ""Updated coloring rules""; ""Important display filters""; ""Malicious traffic analysis""; ""Case study â€? Blackhole exploit kit""; ""Protocols in action""; ""The IP address of the infected box""
  • SummaryChapter 2 : Tweaking Wireshark
  • Filtering our way through Wireshark
  • Capture filters
  • Display filters
  • The list of display filters
  • Wireshark profiles
  • Creating a new profile
  • Essential techniques in Wireshark
  • The Summary window
  • The Protocol Hierarchy window
  • The Conversations window
  • The Endpoints window
  • The Expert Infos window
  • Wireshark command-line fu
  • tshark
  • Starting the capture
  • Saving the capture to a file
  • Using filters
  • Statistics
  • capinfos
  • editcap
  • mergecap
  • Summary

Similar Items