This blog provides customization options helpful for security professionals investigating malicious network traffic.Ī pcap for this tutorial is available here. The default column display in Wireshark provides a wealth of information, but you should customize Wireshark to better meet your specific needs. What makes Wireshark so useful? It is very customizable. As a Threat Intelligence Analyst for Palo Alto Networks Unit 42, I often use Wireshark to review traffic generated from malware samples. This tool is used by IT professionals to investigate a wide range of network issues. Wireshark is a free protocol analyzer that can record and display packet captures (pcaps) of network traffic.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |