Book Image

Wireshark Revealed: Essential Skills for IT Professionals

By : James H Baxter, Yoram Orzach, Charit Mishra
Book Image

Wireshark Revealed: Essential Skills for IT Professionals

By: James H Baxter, Yoram Orzach, Charit Mishra

Overview of this book

This Learning Path starts off installing Wireshark, before gradually taking you through your first packet capture, identifying and filtering out just the packets of interest, and saving them to a new file for later analysis. You will then discover different ways to create and use capture and display filters. By halfway through the book, you'll be mastering Wireshark features, analyzing different layers of the network protocol, and looking for any anomalies.We then start Ethernet and LAN switching, through IP, and then move on to TCP/UDP with a focus on TCP performance problems. It also focuses on WLAN security. Then, we go through application behavior issues including HTTP, mail, DNS, and other common protocols. This book finishes with a look at network forensics and how to locate security problems that might harm the network.This course provides you with highly practical content explaining Metasploit from the following books: 1) Wireshark Essentials 2) Network Analysis Using Wireshark Cookbook 3) Mastering Wireshark

Related Content you might be interested in

Current Title:

Small book image
Wireshark Revealed: Essential Skills for IT Professionals
James H Baxter | Yoram Orzach | Charit Mishra
Dec, 2017 | 15 hours 12 minutes
No titles found
Table of Contents (5 chapters)
Preface
Preface
What this learning path covers
What you need for this learning path
Who this learning path is for
Customer support
Free Chapter
1
1. Module 1
1. Module 1
1. Getting Acquainted with Wireshark
2. Networking for Packet Analysts
3. Capturing All the Right Packets
4. Configuring Wireshark
5. Network Protocols
6. Troubleshooting and Performance Analysis
7. Packet Analysis for Security Tasks
8. Command-line and Other Utilities
2
2. Module 2
2. Module 2
1. Introducing Wireshark
2. Using Capture Filters
3. Using Display Filters
4. Using Basic Statistics Tools
5. Using Advanced Statistics Tools
6. Using the Expert Infos Window
7. Ethernet, LAN Switching, and Wireless LAN
8. ARP and IP Analysis
9. UDP/TCP Analysis
10. HTTP and DNS
11. Analyzing Enterprise Applications' Behavior
12. SIP, Multimedia, and IP Telephony
13. Troubleshooting Bandwidth and Delay Problems
14. Understanding Network Security
A. Links, Tools, and Reading
3
3. Module 3
3. Module 3
1. Welcome to the World of Packet Analysis with Wireshark
2. Filtering Our Way in Wireshark
3. Mastering the Advanced Features of Wireshark
4. Inspecting Application Layer Protocols
5. Analyzing Transport Layer Protocols
6. Analyzing Traffic in Thin Air
7. Network Security Analysis
8. Troubleshooting
9. Introduction to Wireshark v2
Bibliography
4
Index
Index

Chapter 3. Mastering the Advanced Features of Wireshark

In this chapter, we will look under the hood of the Statistics menu in Wireshark and work with different command-line utilities that come pre-packaged with Wireshark. Here, we will cover the following topics:

  • Collecting network stats using Wireshark's Statistics menu
  • LabUp—Summary, Protocol Hierarchy, Conversations, and Endpoints
  • Mapping overall traffic in graphical form
  • LabUp—Graphs
  • View network traffic in plain-text form
  • LabUp—TCP Streams
  • Learn how to view logged anomalies in your trace file
  • LabUp—Expert Infos
  • Using command-line tools for protocol analysis
  • LabUp—CommandLine
  • Practice questions

With Wireshark, you can access a variety of statistics about the packets and protocols involved in the communication between two hosts. We can collect basic as well as advanced and specific information about protocols that are involved in the communication process. We will discuss most of the useful tools...

Previous Section
End of Section 4
Next Section