Search for:

A Step-by-Step Guide to Tcpdump for Security Analysts

Introduction to TcpdumpTcpdump is a pivotal tool for those in security analysis, acting as a network protocol analyser. It operates via a command-line interface, allowing the capture and analysis of network traffic. It’s widely available on Linux distributions and Unix-based systems, including macOS®, enabling you to save and later examine [...]

Tags:
Continue reading

Packet Details and Wireshark

Investigating packet details using Wireshark is an essential capability for any security analyst. This comprehensive guide is designed to deepen your understanding of packet analysis, focusing on the examination of network packets and the identification of suspicious activities. Introduction to Internet Protocol (IP) IPv4 Header Fields IPv6 Header Fields Wireshark: [...]

Tags:
Continue reading