Ammar WK, profile picture
Uploaded byAmmar WK
2,410 views

Packet analysis (Basic)

This document summarizes a technical workshop on network packet analysis presented by Ahmad Muammar W.K. OSCP. The workshop covers capturing and analyzing network traffic at different levels, from examining protocol fields to reconstructing files. Challenges like encrypted traffic and incorrect protocol dissection are also discussed. Various Wireshark features are demonstrated including capture and display filters, protocol decoding, and reconstructing files transmitted over non-standard ports.

Embed presentation

Downloaded 276 times
Network Packet Analysis (basic) Technical Workshop (25 Oktober 2012) Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Introduction • A.K.A y3dips • Pro. Bandwidth Hunter • IT(Sec) Consultant/Pentester/py.Coder • Founder echo.or.id, ubuntu-id, idsecconf • @y3dips, me@ammar.web.id Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis • Captured Network Traffic • Analyze the protocols, carve out the files, search for strings Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis • Analyze fileds within protocols • Analyze Protocols within packets • Analyze Packets within streams • Reconstruct higher-layer protocols Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Issue Found • Too many stream packet • Packet corrupted or truncated • Contents encrypted at different layers • Unstandard protocols Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Protocol Analysis • Examination of one or more fields within the protocol’s data structure. Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis • Packet Analysis Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
WiresharkWorkshop Network Packet Analysis Technical (25 Oktober 2012) Ahmad Muammar W.K. OSCP Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
WireShark Advance Usage Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Wireshark Display • Packet List • Packet Details • Packet Bytes Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet List Packet List Packet Details Packet Bytes Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Wireshark Coloring Rules Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Wireshark Capture Filters Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Capture Filters for the shake of the performance Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Capture/BPF syntax • Type: host, net, port • Direction: src, dst • Proto: ether, ip, tcp, udp • Logical oepration: &&, ||, ! Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Capture Filters • Filtering the host • host ipv4/ipv6 • host hostname • ether host mac (00-11-22-33-44-55) • src/dst host 192.168.1.1 Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Capture Filters • Filtering the Protocol/Port • port 443 • !port 443 • protocol name (e.g: icmp) • !protocol name (e.g !icmp) Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Capture Filters • Protocol Field • icmp[0] == 3 (unreachable) • icmp[0] == 8 (echo request) • tcp[13] & 4 == 4 (RST) • tcp[13] & 1 == 1 (FIN) Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Display Filters See only what you wanna see Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Display Filters • !tcp.port=443 • tcp.flag.syn=1 • !arp • tcp.port==21 || tcp.port==23 • smtp || pop || imap Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis Wrong Dissector Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Protocol Dissector • Allow Wireshark to automatically break down into various section so that it can be analyzed • Translator, decoder • Not work for non-standard/default port. Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Wrong Dissector • So its an SSL traffic • But, why we able to see all info • FTP Traffic using port 443? • Decode it with FTP Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis Reconstruct File and Data Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Reconstruct Data • nc -lv 110 > confidential.pdf • nc -vv 192.168.1.222 110 < confidential.pdf • non standard port send pdf and zip Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis Reconstruct PDF File Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis Reconstruct Zip File from NC file transfer Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis Reconstruct Zip File from FTP server Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Packet Analysis Decrypting and decode ssl packet Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
Network Packet Analysis Technical Workshop (25 Oktober 2012) Ahmad Muammar W.K. OSCP Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13

More Related Content

PDF
Network Packet Analysis
byAmmar WK
 
PDF
Prepare Yourself to Become Infosec Professional
byM.Syarifudin, ST, OSCP, OSWP
 
PDF
My pwk & oscp journey
byM.Syarifudin, ST, OSCP, OSWP
 
PDF
Playin with Password
byAmmar WK
 
PDF
Mobile hacking, pentest, and malware
byAmmar WK
 
PDF
Web Hacking (basic)
byAmmar WK
 
PDF
Invited Talk - Cyber Security and Open Source
byhack33
 
PPTX
Appsec 2013-krehel-ondrej-forensic-investigations-of-web-exploitations
bydrewz lin
 
Network Packet Analysis
byAmmar WK
 
Prepare Yourself to Become Infosec Professional
byM.Syarifudin, ST, OSCP, OSWP
 
My pwk & oscp journey
byM.Syarifudin, ST, OSCP, OSWP
 
Playin with Password
byAmmar WK
 
Mobile hacking, pentest, and malware
byAmmar WK
 
Web Hacking (basic)
byAmmar WK
 
Invited Talk - Cyber Security and Open Source
byhack33
 
Appsec 2013-krehel-ondrej-forensic-investigations-of-web-exploitations
bydrewz lin
 

Viewers also liked

PDF
Exploiting Llinux Environment
byEnrico Scapin
 
PDF
Appsec usa2013 js_libinsecurity_stefanodipaola
bydrewz lin
 
PDF
from 33 to 0 - A journey to be root
byAmmar WK
 
PDF
webhacking
byAmmar WK
 
PDF
eMAPT
byAndrii Holovchenko
 
PDF
Take a REST!
byVladimir Tsukur
 
PDF
Informationssicherheit im Übersetzungsprozess
byHans Pich
 
PPT
Metasploit-TOI-Ebryx-PVT-Ltd
byAli Hussain
 
PDF
Penetration test
byDigicomp Academy AG
 
PDF
Art of Thinking [Re-write]
byAmmar WK
 
PPTX
Tranning-2
byAli Hussain
 
PPTX
Static PIE, How and Why - Metasploit's new POSIX payload: Mettle
byBrent Cook
 
PPTX
Exploit Development with Python
byThomas Gregory
 
PDF
Webinar Metasploit Framework - Academia Clavis
byClavis Segurança da Informação
 
PPTX
PTES: PenTest Execution Standard
bySource Conference
 
PPTX
BSides Algiers - Metasploit framework - Oussama Elhamer
byShellmates
 
PPTX
Metasploit for information gathering
byChris Harrington
 
PPTX
Slide Palestra "Metasploit Framework"
byRoberto Soares
 
PPT
Penetrasi Jaringan
byDigital Echidna
 
Exploiting Llinux Environment
byEnrico Scapin
 
Appsec usa2013 js_libinsecurity_stefanodipaola
bydrewz lin
 
from 33 to 0 - A journey to be root
byAmmar WK
 
webhacking
byAmmar WK
 
eMAPT
byAndrii Holovchenko
 
Take a REST!
byVladimir Tsukur
 
Informationssicherheit im Übersetzungsprozess
byHans Pich
 
Metasploit-TOI-Ebryx-PVT-Ltd
byAli Hussain
 
Penetration test
byDigicomp Academy AG
 
Art of Thinking [Re-write]
byAmmar WK
 
Tranning-2
byAli Hussain
 
Static PIE, How and Why - Metasploit's new POSIX payload: Mettle
byBrent Cook
 
Exploit Development with Python
byThomas Gregory
 
Webinar Metasploit Framework - Academia Clavis
byClavis Segurança da Informação
 
PTES: PenTest Execution Standard
bySource Conference
 
BSides Algiers - Metasploit framework - Oussama Elhamer
byShellmates
 
Metasploit for information gathering
byChris Harrington
 
Slide Palestra "Metasploit Framework"
byRoberto Soares
 
Penetrasi Jaringan
byDigital Echidna
 

Similar to Packet analysis (Basic)

PPTX
Wireshark_Tutorial.pptx
byAdeelIshtiaq4
 
PPTX
Packet Analysis - Course Technology Computing Conference
byCengage Learning
 
PDF
CISSP Week 5
byjemtallon
 
PDF
Network Analysis Using Wireshark -10- arp and ip analysis
byYoram Orzach
 
PDF
Free CCNA workbook by networkers home pdf
byNetworkershome
 
PDF
Uccn1003 may10 - lab 08 - wireshark analysis of trace files - answer-update...
byShu Shin
 
PDF
Uccn1003 may10 - lab 08 - wireshark analysis of trace files - answer-update...
byShu Shin
 
PPT
3.Network
byphanleson
 
PDF
Interprocess Message Formats
byPathfinder Solutions
 
Wireshark_Tutorial.pptx
byAdeelIshtiaq4
 
Packet Analysis - Course Technology Computing Conference
byCengage Learning
 
CISSP Week 5
byjemtallon
 
Network Analysis Using Wireshark -10- arp and ip analysis
byYoram Orzach
 
Free CCNA workbook by networkers home pdf
byNetworkershome
 
Uccn1003 may10 - lab 08 - wireshark analysis of trace files - answer-update...
byShu Shin
 
Uccn1003 may10 - lab 08 - wireshark analysis of trace files - answer-update...
byShu Shin
 
3.Network
byphanleson
 
Interprocess Message Formats
byPathfinder Solutions
 

More from Ammar WK

PDF
Vvdp-fgd-bssn
byAmmar WK
 
PDF
Pen-testing is Dead?
byAmmar WK
 
PDF
How To [relatively] Secure your Web Applications
byAmmar WK
 
PDF
A Journey Into Pen-tester land: Myths or Facts!
byAmmar WK
 
PDF
Cybercrime: A threat to Financial industry
byAmmar WK
 
PDF
Bugbounty vs-0day
byAmmar WK
 
PDF
Advanced Persistent Threat
byAmmar WK
 
PDF
Hacker? : it's not about Black or White
byAmmar WK
 
PDF
Introduction to IOS Application Penetration Testing
byAmmar WK
 
PDF
Burp suite
byAmmar WK
 
PDF
Network security
byAmmar WK
 
PDF
Penetration testing
byAmmar WK
 
PDF
Information Security Professional
byAmmar WK
 
PPT
Handout infosec defense-mechanism-y3dips
byAmmar WK
 
PDF
Layer 7 denial of services attack mitigation
byAmmar WK
 
PDF
How To Become A Hacker
byAmmar WK
 
PDF
y3dips - Who Own Your Sensitive Information?
byAmmar WK
 
PDF
idsecconf2010-hacking priv8 network
byAmmar WK
 
PDF
Mastering Network HackingFU - idsecconf2008
byAmmar WK
 
PDF
Attacking Blackberry For Phun and Profit
byAmmar WK
 
Vvdp-fgd-bssn
byAmmar WK
 
Pen-testing is Dead?
byAmmar WK
 
How To [relatively] Secure your Web Applications
byAmmar WK
 
A Journey Into Pen-tester land: Myths or Facts!
byAmmar WK
 
Cybercrime: A threat to Financial industry
byAmmar WK
 
Bugbounty vs-0day
byAmmar WK
 
Advanced Persistent Threat
byAmmar WK
 
Hacker? : it's not about Black or White
byAmmar WK
 
Introduction to IOS Application Penetration Testing
byAmmar WK
 
Burp suite
byAmmar WK
 
Network security
byAmmar WK
 
Penetration testing
byAmmar WK
 
Information Security Professional
byAmmar WK
 
Handout infosec defense-mechanism-y3dips
byAmmar WK
 
Layer 7 denial of services attack mitigation
byAmmar WK
 
How To Become A Hacker
byAmmar WK
 
y3dips - Who Own Your Sensitive Information?
byAmmar WK
 
idsecconf2010-hacking priv8 network
byAmmar WK
 
Mastering Network HackingFU - idsecconf2008
byAmmar WK
 
Attacking Blackberry For Phun and Profit
byAmmar WK
 

Packet analysis (Basic)

  • 1.
    Network Packet Analysis (basic) Technical Workshop (25 Oktober 2012) Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 2.
    Introduction • A.K.A y3dips • Pro. Bandwidth Hunter • IT(Sec) Consultant/Pentester/py.Coder • Founder echo.or.id, ubuntu-id, idsecconf • @y3dips, me@ammar.web.id Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 3.
    Packet Analysis • Captured Network Traffic • Analyze the protocols, carve out the files, search for strings Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 4.
    Packet Analysis • Analyze fileds within protocols • Analyze Protocols within packets • Analyze Packets within streams • Reconstruct higher-layer protocols Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 5.
    Issue Found • Too many stream packet • Packet corrupted or truncated • Contents encrypted at different layers • Unstandard protocols Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 6.
    Protocol Analysis • Examination of one or more fields within the protocol’s data structure. Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 7.
    Packet Analysis • Packet Analysis Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 8.
    WiresharkWorkshop Network Packet Analysis Technical (25 Oktober 2012) Ahmad Muammar W.K. OSCP Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 9.
    WireShark Advance Usage Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 10.
    Wireshark Display • Packet List • Packet Details • Packet Bytes Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 11.
    Packet List Packet List Packet Details Packet Bytes Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 12.
    Wireshark Coloring Rules Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 13.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 14.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 15.
    Wireshark Capture Filters Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 16.
    Capture Filters for the shake of the performance Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 17.
    Capture/BPF syntax • Type: host, net, port • Direction: src, dst • Proto: ether, ip, tcp, udp • Logical oepration: &&, ||, ! Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 18.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 19.
    Capture Filters • Filtering the host • host ipv4/ipv6 • host hostname • ether host mac (00-11-22-33-44-55) • src/dst host 192.168.1.1 Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 20.
    Capture Filters • Filtering the Protocol/Port • port 443 • !port 443 • protocol name (e.g: icmp) • !protocol name (e.g !icmp) Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 21.
    Capture Filters • Protocol Field • icmp[0] == 3 (unreachable) • icmp[0] == 8 (echo request) • tcp[13] & 4 == 4 (RST) • tcp[13] & 1 == 1 (FIN) Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 22.
    Display Filters See only what you wanna see Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 23.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 24.
    Display Filters • !tcp.port=443 • tcp.flag.syn=1 • !arp • tcp.port==21 || tcp.port==23 • smtp || pop || imap Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 25.
    Packet Analysis Wrong Dissector Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 26.
    Protocol Dissector • Allow Wireshark to automatically break down into various section so that it can be analyzed • Translator, decoder • Not work for non-standard/default port. Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 27.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 28.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 29.
    Wrong Dissector • So its an SSL traffic • But, why we able to see all info • FTP Traffic using port 443? • Decode it with FTP Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 30.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 31.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 32.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 33.
    Packet Analysis Reconstruct File and Data Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 34.
    Reconstruct Data • nc -lv 110 > confidential.pdf • nc -vv 192.168.1.222 110 < confidential.pdf • non standard port send pdf and zip Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 35.
    Packet Analysis Reconstruct PDF File Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 36.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 37.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 38.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 39.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 40.
    Packet Analysis Reconstruct Zip File from NC file transfer Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 41.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 42.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 43.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 44.
    Packet Analysis Reconstruct Zip File from FTP server Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 45.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 46.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 47.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 48.
    Packet Analysis Decrypting and decode ssl packet Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 49.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 50.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 51.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 52.
    Network Packet Analysis- Ahmad Muammar W.K. OSCP Tuesday, January 22, 13
  • 53.
    Network Packet Analysis Technical Workshop (25 Oktober 2012) Ahmad Muammar W.K. OSCP Network Packet Analysis - Ahmad Muammar W.K. OSCP Tuesday, January 22, 13