Packt+ | Advance your knowledge in tech

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Mastering Wireshark 2

You're reading from Mastering Wireshark 2 Develop skills for network analysis and address a wide range of information security threats

Product type Paperback

Published in May 2018

Publisher

ISBN-13 9781788626521

Length 326 pages

Edition 1st Edition

Tools

Wireshark

Concepts

Information Security

Author (1):

Andrew Crouthamel

View More author details

Table of Contents (13) Chapters

Preface

1. Installing Wireshark 2 FREE CHAPTER

2. Getting Started with Wireshark

3. Filtering Traffic

4. Customizing Wireshark

5. Statistics

6. Introductory Analysis

7. Network Protocol Analysis

8. Application Protocol Analysis I

9. Application Protocol Analysis II

10. Command-Line Tools

11. A Troubleshooting Scenario

12. Other Books You May Enjoy

Leave a review - let other readers know what you think

Capturing scenario traffic

In this section, we'll take a look at capturing some traffic for our troubleshooting scenario, and checking for some obvious issues before we look into the packet capture a bit more in-depth.

In the following screenshot, we have captured the traffic from the client connecting to the server:

We will now put a filter in here for port 21 because we know that the client is connecting over standard unencrypted FTP. For that we use tcp.port == 21:

So, we got rid of everything else. We can see that there are three packets, and it looks like we have a SYN and two retransmissions. So the client, which is .152, is trying to connect to the server running on .160, and it's not even beginning the TCP handshake. So the server is not doing something correctly in order to negotiate port 21. It's not that the server is rejecting the user credentials or there's some sort of other obvious issue. It's definitely not listening on 21 or something like that. Let's start a capture on the...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Andrew Crouthamel

Andrew Crouthamel

Andrew Crouthamel is an experienced Senior Network Engineer and IT trainer who lives in Doylestown, PA, and currently works with organizations such as NASA, ESA, JAXA, Boeing, and the US Air Force. His passion for teaching shows in his courses, which are filled with excitement and real-world anecdotes. For more information about him, please refer to the following links: https://www.linkedin.com/in/andrewcrouthamel https://www.youtube.com/c/andrewcrouthamel

See other products by Andrew Crouthamel

Other recommended products

Related to this chapter

Learn Wireshark - Fundamentals of Wireshark

Learn Wireshark - Fundamentals of Wireshark

Learn Wireshark provides a solid overview of basic protocol analysis. The book shows you how to navigate the Wireshark interface, so you can confidently examine common protocols such as TCP, IP and ICMP. You’ll learn tips on how to use display and capture filters, save, export, and share captures, and tips on how to troubleshoot latency issues

Aug 2019 14h 24m

Wireshark 2 Quick Start Guide

Wireshark 2 Quick Start Guide

Wireshark is a powerful tool for network analysis, a combination of Kali Linux and the Metasploit framework. Wireshark is used to analyze the amount of data that flows through a network - it lets you see what's going on in your network. This book takes you from the basics of the Wireshark environment to detecting and resolving network anomalies.

Jun 2018 5h 28m

Network Analysis using Wireshark 2 Cookbook

Network Analysis using Wireshark 2 Cookbook

This book contains practical recipes on troubleshooting a data communications network. This second version of the book focuses on Wireshark 2, which has already gained a lot of traction due to the enhanced features that it offers to users. By the end of this book, you’ll know how to analyze the traffic, find patterns of various offending traffic, and secure your network from them.

Mar 2018 20h 52m

Hands-On Network Forensics

Hands-On Network Forensics

In the era of network attacks and malware threat, it becomes important to have skills to investigate the attack evidence and vulnerabilities prevailing in the network. This book focuses on how to acquire and analyze the evidence, write a report and use the common tools in network forensics.

Mar 2019 11h 56m

Python For Offensive PenTest

Python For Offensive PenTest

Python is an easy-to-learn and cross-platform programming language which has unlimited third-party libraries. Plenty of open source hacking tools are written in Python and can be easily integrated within your script. This book is divided into clear bite-size chunks so you can learn at your own pace and focus on the areas of most interest to you. You will learn how to code your own scripts and master ethical hacking from scratch.

Apr 2018 5h 52m

Learn Ethical Hacking from Scratch

Learn Ethical Hacking from Scratch

This book is designed to help you learn the basics, it assumes that you have no prior knowledge in hacking, and by the end of it you'll be at a high intermediate level being able launch attacks and hack computer systems just like black-hat hackers do, not only that but you'll also learn how to secure systems from these attacks.

Jul 2018 18h 48m

Hands-On Network Programming with C

Hands-On Network Programming with C

Network programming, a challenging topic in C, is made understandable through careful exposition of socket programming APIs. Keeping up with the current trends, you will gain an insight into web programming for IoT. Finally, you will learn how to monitor the network, troubleshoot problems, implement security, and understand best practices.

May 2019 15h 56m

Personalised recommendations for you

Based on your interests and search pattern

Mastering PowerShell Scripting

Mastering PowerShell Scripting

PowerShell scripts provides a convenient method for automating tasks, using them proficiently can be challenging. This all-inclusive guide begins at the basics and covers advanced concepts, equipping you with tips to become an expert in PowerShell Core 7.3 scripting.

May 2024 27h 32m

Network Automation with Nautobot

Network Automation with Nautobot

This book will help you understand why a network source of truth is needed for long-term network automation success, which will in turn save you hundreds of hours in deploying and integrating Nautobot into network automation.

May 2024 27h 12m

NGINX HTTP Server

NGINX HTTP Server

Explore the power of NGINX with this guide covering an array of essential practical topics, including securing your infrastructure with automatic TLS certificates, placing NGINX in front of your existing applications, and much more.

May 2024 8h 44m

Mastering Azure Virtual Desktop

Mastering Azure Virtual Desktop

This updated edition will help you plan an Azure Virtual Desktop Architecture, implement its infrastructure, and manage its access and security. With content aligned with the exam objectives, it'll help you ace the Microsoft AZ-140 exam.

Jul 2024 23h 56m

Learn Ansible will teach you how to write Ansible Playbooks for deploying simple apps. This updated edition covers the latest Ansible features, helping you confidently implement Ansible in your daily workflows.

May 2024 13h 48m

HashiCorp Terraform Associate (003) Exam Guide

HashiCorp Terraform Associate (003) Exam Guide

This book will help you explore HashiCorp Terraform and prepare for Associate (003) certification, from understanding core concepts to advanced modules. You'll gain hands-on expertise, troubleshoot with confidence, and more.

May 2024 11h 28m

Kubernetes – An Enterprise Guide

Kubernetes – An Enterprise Guide

Navigate the complexities of Kubernetes and fully leverage its capabilities for enterprise applications. This edition dives into advanced deployments, groundbreaking techniques, and insights that will elevate your skills and redefine your expertise.

Aug 2024 22h 44m

Atlassian DevOps Toolchain Cookbook

Atlassian DevOps Toolchain Cookbook

Master setting up a DevOps toolchain using Atlassian tools and Open DevOps as a framework with this recipe-driven guide to automated testing, integration, deployment, observability, and incident management for streamlining development processes.

Jul 2024 16h 48m

AWS Certified Developer Associate Certification and Beyond

AWS Certified Developer Associate Certification and Beyond

This is your guide to passing the challenging AWS Certified Developer – Associate certification exam and setting yourself up for a rewarding career. Through a sample project, it explains how to design, architect, and implement applications on AWS.

Jul 2024 23h 40m

Implementing GitOps with Kubernetes

Implementing GitOps with Kubernetes

This book provides step-by-step tutorials and hands-on examples for effectively implementing GitOps practices in your Kubernetes deployments. You'll learn how to automate, monitor, and secure your infrastructure for efficient application delivery.

Aug 2024 14h 48m