Wireshark:Network forensics investigation

Stumbled over a good link? Post it here... (the board is flushed regularly)
Post Reply
scatter
Fame ! Where are the chicks?!
Fame ! Where are the chicks?!
Posts: 366
Joined: 01 Jan 2014, 05:22
10

Wireshark:Network forensics investigation

Post by scatter »

well as I am working on solving the challenges offered by DNR I thought it would be good to share some of the infos I saved and am using to find my way in this area of forensics so here they are :

*Network forensics by Phillip D. Shade who is the founder of Merlion’s Keep Consulting, a professional services company specializing in Network and Forensics Analysis :

http://sharkfest.wireshark.org/sharkfes ... n_Look.pdf" onclick="window.open(this.href);return false;

*Network Forensics: Packet Analysis Using Wireshark
" onclick="window.open(this.href);return false;

*Lists of network protocols
http://en.wikipedia.org/wiki/Lists_of_network_protocols" onclick="window.open(this.href);return false;

*Basic Forensics with wireshark tuto
http://evilzone.org/tutorials/basic-for ... wireshark/" onclick="window.open(this.href);return false;

*scirt exercice
https://www.enisa.europa.eu/activities/ ... set_07.pdf" onclick="window.open(this.href);return false;

*Network forensics workshop with networkminer
http://networkminer.sourceforge.net/doc ... kMiner.pdf" onclick="window.open(this.href);return false;

*Network monitoring and forensics:
opensecuritytraining.info/CTFForensics_files/CTFForensics.pptx

*Wireshark decrypt some pcap files
http://www.lovemytool.com/blog/2010/05/ ... lders.html" onclick="window.open(this.href);return false;

*Traffic analysis
http://www.csirtcv.gva.es/sites/all/fil ... eshark.pdf" onclick="window.open(this.href);return false;

*Export plain text pcap file after SSL/TLS decryption
http://www.unleashnetworks.com/resource ... ption.html" onclick="window.open(this.href);return false;

User avatar
Thanatos
forum buddy
forum buddy
Posts: 15
Joined: 29 Sep 2005, 16:00
18
Contact:

Re: Wireshark:Network forensics investigation

Post by Thanatos »

Great share sir, not only for challenges but it can help everyone that is working with network and packet analysis. thanks for this brother
*thumb*

scatter
Fame ! Where are the chicks?!
Fame ! Where are the chicks?!
Posts: 366
Joined: 01 Jan 2014, 05:22
10

Re: Wireshark:Network forensics investigation

Post by scatter »

yup that s the point enjoy :)

User avatar
bad_brain
Site Owner
Site Owner
Posts: 11636
Joined: 06 Apr 2005, 16:00
18
Location: In your eye floaters.
Contact:

Re: Wireshark:Network forensics investigation

Post by bad_brain »

I also recommend the really good "TCP/IP Illustrated" book series (1-3), available at amazon...or google... :-99
Image

scatter
Fame ! Where are the chicks?!
Fame ! Where are the chicks?!
Posts: 366
Joined: 01 Jan 2014, 05:22
10

Re: Wireshark:Network forensics investigation

Post by scatter »

thx b_b I have it and I have O Reilly ebook about TCP/IP :D and guess what free no google nor amazon it s not illegal to download here so I am just enjoying before they wake up one day and make copyrights law ^_^

User avatar
ayu
Staff
Staff
Posts: 8109
Joined: 27 Aug 2005, 16:00
18
Contact:

Re: Wireshark:Network forensics investigation

Post by ayu »

Moved to links
"The best place to hide a tree, is in a forest"

Post Reply