Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Wireshark ppt

847 views

Published on

This is the PPT I used for Wireshark Presentation in Null meetup on 27Nov2016.

Published in: Education
  • Login to see the comments

  • Be the first to like this

Wireshark ppt

  1. 1. bnatarajan5@gmail.com 1 Wireshark By Balasubramaniam Natarajan
  2. 2. bnatarajan5@gmail.com 2 What's Wireshark ● It is a GUI tool which runs on many OS and helps to look at network traffic.
  3. 3. bnatarajan5@gmail.com 3 Filters ip.addr == 192.168.1.30 http or dns ip.addr == 192.168.1.4 && ip.addr == 192.168.1.30 udp contains 57:68:65 udp contains debian tcp.flags.reset==1 http.request tcp.port==80 !(arp or icmp or dns) tcp contains pscp tcp.analysis.retransmission tcp.analysis.duplicate_ack tcp.ack == 737527 || tcp.seq == 737527 tcp.seq == 166359 || tcp.ack == 166359
  4. 4. bnatarajan5@gmail.com 4 ● All pcap were taken from here for practice ● https://wiki.wireshark.org/SampleCaptures#Sample_Captures ● dns-remoteshell.pcap ● http://bullet-bala.blogspot.in/2010/09/four-stages-of-dhcp-capture-by.html ● dhcp.pcapng ● telnet-cooked.pcap Examples Pcap
  5. 5. bnatarajan5@gmail.com 5 ACL Creation ● Tool > Firewall ACL ● Statistics > Conversation ●

×