A succinct guide to securely administer your network using Wireshark
Wireshark is the world's foremost network protocol analyzer for network analysis and troubleshooting.
This book will walk you through exploring and harnessing the vast potential of Wireshark, the world's foremost network protocol analyzer.
The book begins by introducing you to the foundations of Wireshark and showing you how to browse the numerous features it provides. You'll be walked through using these features to detect and analyze the different types of attacks that can occur on a network. As you progress through the chapters of this book, you'll learn to perform sniffing on a network, analyze clear-text traffic on the wire, recognize botnet threats, and analyze Layer 2 and Layer 3 attacks along with other common hacks.
By the end of this book, you will be able to fully utilize the features of Wireshark that will help you securely administer your network.
What You Will Learn
Familiarize yourself with the robust features offered by Wireshark
Use the powerful command-line utilities shipped with Wireshark
Analyze numerous threats to network security using Wireshark
Investigate attacks performed using popular security tools such as Nmap, Nessus, Metasploit, and more
Solve real-world CTF challenges using Wireshark
Create your own security-related profile in Wireshark
Configure Wireshark for effective network troubleshooting
Get accustomed to common scenarios faced by security analysts
Analyze malware traffic successfully by using Wireshark
Unearth anomalies hampering the speed of network communications
Downloading the example code for this book. You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the files e-mailed directly to you.