Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering Wireshark
  • Table Of Contents Toc
Mastering Wireshark

Mastering Wireshark

By : Mishra
3.5 (2)
Buy this Book
close
close
Mastering Wireshark

Mastering Wireshark

3.5 (2)
By: Mishra
Buy this Book

Overview of this book

Wireshark is a popular and powerful tool used to analyze the amount of bits and bytes that are flowing through a network. Wireshark deals with the second to seventh layer of network protocols, and the analysis made is presented in a human readable form. Mastering Wireshark will help you raise your knowledge to an expert level. At the start of the book, you will be taught how to install Wireshark, and will be introduced to its interface so you understand all its functionalities. Moving forward, you will discover different ways to create and use capture and display filters. Halfway through the book, you’ll be mastering the features of Wireshark, analyzing different layers of the network protocol, looking for any anomalies. As you reach to the end of the book, you will be taught how to use Wireshark for network security analysis and configure it for troubleshooting purposes.
Table of Contents (11 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Lock Free Chapter
1
1. Welcome to the World of Packet Analysis with Wireshark
Icon
1. Welcome to the World of Packet Analysis with Wireshark
Icon
Introduction to Wireshark
Icon
A brief overview of the TCP/IP model
Icon
The layers in the TCP/IP model
Icon
An introduction to packet analysis with Wireshark
Icon
Capturing methodologies
Icon
Summary
Icon
Practice questions
2
2. Filtering Our Way in Wireshark
Icon
2. Filtering Our Way in Wireshark
Icon
An introduction to filters
Icon
Capture filters
Icon
Display filters
Icon
Searching for packets using the Find dialog
Icon
Create new Wireshark profiles
Icon
Summary
Icon
Practice questions
3
3. Mastering the Advanced Features of Wireshark
Icon
3. Mastering the Advanced Features of Wireshark
Icon
The Statistics menu
Icon
Conversations
Icon
Endpoints
Icon
Working with IO, Flow, and TCP stream graphs
Icon
IO graphs
Icon
Flow graphs
Icon
TCP stream graphs
Icon
Follow TCP streams
Icon
Expert Infos
Icon
Command Line-fu
Icon
Summary
Icon
Exercise
4
4. Inspecting Application Layer Protocols
Icon
4. Inspecting Application Layer Protocols
Icon
Domain name system
Icon
File transfer protocol
Icon
Hyper Text Transfer Protocol
Icon
Simple Mail Transfer Protocol
Icon
Summary
Icon
Practice questions:
5
5. Analyzing Transport Layer Protocols
Icon
5. Analyzing Transport Layer Protocols
Icon
The transmission control protocol
Icon
The User Datagram Protocol
Icon
Summary
Icon
Practice questions
6
6. Analyzing Traffic in Thin Air
Icon
6. Analyzing Traffic in Thin Air
Icon
Understanding IEEE 802.11
Icon
Usual and unusual WEP – open/shared key communication
Icon
Decrypting WEP and WPA traffic
Icon
Summary
Icon
Practice questions
7
7. Network Security Analysis
chevron up
Icon
7. Network Security Analysis
Icon
Information gathering
Icon
ARP poisoning
Icon
Analyzing brute force attacks
Icon
Summary
Icon
Practice questions
8
8. Troubleshooting
Icon
8. Troubleshooting
Icon
Recovery features
Icon
Summary
Icon
Practice questions
9
9. Introduction to Wireshark v2
Icon
9. Introduction to Wireshark v2
Icon
The intelligent scroll bar
Icon
Translation
Icon
Graph improvements
Icon
TCP streams
Icon
USBPcap
Icon
Summary
Icon
Practice questions
10
Index
Icon
Index

Chapter 7. Network Security Analysis

This chapter will teach you how to use Wireshark to analyze network security issues, such as analyzing malware traffic and foot printing attempts. You will learn how to use Wireshark for network security analysis. This chapter will cover the following topics:

  • Analyzing port scanning, foot printing, and attack activities
  • Lab up—port scanning with Nmap
  • Analyzing brute force attacks
  • Lab up—analyzing brute force attacks
  • Inspecting malicious traffic
  • Lab up—inspecting malicious traffic
  • Solving real-world CTF challenges
  • Practice questions

Up to this chapter, I have tried to make you aware of how one should use Wireshark to analyze the packets flowing around. We have just focused on how to use this sniffing tool for basic analysis purposes. However, what I am about to tell you is that in most of the places, Wireshark is used for security-analysis purpose, ranging from basic footprinting attacks to advanced Trojan-based attacks.

Using a...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Mastering Wireshark
End of Section 7
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon