What is Wireshark?

Wireshark is a free and open-source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education. How to use Wireshark to inspect packets and isolate network and system problems [pdf] Wireshark Display Filters via Packetlife [pdf]

Read More

Using tcpdump and wireshark to view network scanning

Try to get comfortable with some basic options in tcpdump or in Wireshark. Can you answer the following questions ? How do you write the output to a file? How do you read from a file ? tcpdump -w tcpdump -r How do you enable or disable name and port number resolution ? tcpdump -n […]

Read More