Amplification Attacks, SYN Floods, Ping Sweeps, Port Scans, Duplicate IP Addresses, Segment Gaps, ARP Request Storms, Extraneous Data …
Are they lurking in your capture files? Find out with Capture File Forensics version 4.0
apple.co/4onAVxD
#pcap #packetcapture #forensics #security #monitoring #Wireshark
Amplification Attacks, SYN Floods, Ping Sweeps, Port Scans, Duplicate IP Addresses, Segment Gaps, ARP Request Storms, Extraneous Data …
Are they lurking in your capture files? Find out with Capture File Forensics.
apple.co/4onAVxD
#pcap #packetcapture #forensics #security #monitoring #Wireshark
Amplification Attacks, SYN Floods, Ping Sweeps, Port Scans, Duplicate IP Addresses, Segment Gaps, ARP Request Storms, Extraneous Data ...
Are they lurking in your capture files? Find out with Capture File Forensics.
apple.co/4onAVxD
#pcap #packetcapture #forensics #security #monitoring #Wireshark
Wireshark 4.6.0 Supports macOS Pktap Metadata (PID, Process Name, etc.)
https://nuxx.net/blog/2025/10/14/wireshark-4-6-0-supports-macos-pktap-metadata-pid-process-name-etc/
#HackerNews #Wireshark #Pktap #macOS #Metadata #NetworkAnalysis #PacketCapture
I think I've worked out why my string matching in `iptables` hasn't been working.
When I do get it to log, it's reporting 64 byte packets. For packets that Wireshark says are 78 bytes. Because it's just reporting the IP frame size, not the full Ethernet frame size. And so my offsets have been out by an Ethernet header size that I assumed was in the packet calculations.
Because it's IP Tables, of course 😑
Just getting started with Wireshark?
Check out “Packet Capture 101” for a beginner-friendly intro to packet analysis! Taught by @packetjay, this session covers everything you need to know to get up and running with Wireshark.
https://www.youtube.com/watch?v=rWHWOat5_Xg
Want to learn live from experts? Join us at SharkFest'25 EUROPE for hands-on classes, networking, and all things packet analysis.
Don’t miss your chance to level up your network troubleshooting skills—visit https://sharkfest.wireshark.org for details!
erspan(4): ERSPAN Type II collection https://www.undeadly.org/cgi?action=article;sid=20250512100219 #openbsd #erspan #networking #span #tunneling #pcap #packetcapture #security #monitoring
bpflogd(8) imported into -current https://www.undeadly.org/cgi?action=article;sid=20250507113848 #openbsd #bpflogd #networking #bpf #pcap #packetcapture #packetlogging #devops #development #current #freesoftware #libresoftware
Released a new tool, packet-monkey:
https://github.com/timb-machine/packet-monkey
Packet Monkey is a tool to filter and classify PCAPs using Wireshark filters. I use it for layer 2/3 traffic analysis on engagements.
Join us at SharkFest'25 US for the #TCP Analysis Masterclass with network security expert @packetjay on June 16th.
This pre-conference class delves deep into TCP troubleshooting, from basic concepts to complex scenarios involving multi-point captures for packet loss and timing issues. Elevate your network analysis skills and tackle challenging cases with confidence. Reserve your spot now!
Hello everyone.
In today's article we learn tshark in detail and with usage examples
I wish everyone good work:
https://denizhalil.com/2024/02/16/tshark-network-analysis-tool/
#tshark #cybersecurity #networksecurity #packetsniffer #packetcapture #wireshark #trafficmonitoring
Learn how to enable monitor mode and capture wireless packets in Linux with this guide:
https://www.nayab.dev/linux/networking/capture-wireless-packets-monitor-mode-linux
#Linux #Networking #Wireless #MonitorMode #PacketCapture #NetworkSecurity
So there is an NDIS Capture driver in the virtual switches for Hyper-V... guess what you can do with those? :o) #pcap #packetcapture #networkforensics #dfir
Nothing like feeling major FOMO when your internet friends go to #HackerSummerCamp #DEFCON and you’re watching the fun begin - to kick of an ADHD side quest that’s been sitting in your office.
Here is a #MikroTik 4 slot PCIe card with 4 #AsiaRF #WiFi6E cards installed.
Final photos to come. Still cleaning it up.
I took a #network #PacketCapture of the #Mondaine MSM.25S11, a smart wifi wall clock. How smart exactly is this clock? #InternetOfShit https://lieven.kks36.be/2023/11/08/how-smart-is-the-mondaine-msm-25s11-wifi-wall-clock/
ssldump version 1.8 has been released.
A huge thanks to @wr for the new build and all the tremendous contribution for this release.
ssldump is an SSLv3/TLS network protocol analyzer. It identifies TCP connections on the chosen network interface and attempts to interpret them as SSLv3/TLS traffic. When it identifies SSLv3/TLS traffic, it decodes the records and displays them in a textual form to stdout. If provided with the appropriate keying material, it will also decrypt the connections and display the application data traffic. It also includes a JSON output option, supports JA3 and IPv6.
https://github.com/adulau/ssldump
#opensource #ssldump #PacketCapture #pcap #dfir #cti #ssl #tls
All the #WiFi #Channels Please.
Kudos to the Pentoo Linux group for getting the the latest Linux Kernel running with MediaTek WiFi 6E radios...
Screenshot from @kismetwireless running on #ZIMABoard with the SquidCard...
Last night I caught up with the #TryHackMe #AdventOfCyber2022 challenge and completed days 13 and 14.
Day 13 covered analyzing a #PacketCapture (#PCAP) file using #WireShark. I have some familiarity with the tool, so I was able to burn through that challenge. I did enjoy the twist of exporting a captured file data stream and then running its hash through #VirusTotal.
