O'Reilly logo

Learning Network Forensics by Samir Datt

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

What you need for this book

Readers must be aware of the basics of operating systems such as Linux and Windows as well as networking concepts such as TCP/IP and routers.

The book uses the following software:

  • Tcpdump with the libpcap library
  • Wireshark
  • FTK Imager (AccessData)
  • NetworkMiner for passive network sniffing
  • SNORT for evidence acquisition in the NIDS/NIPS mode
  • Splunk to collect and analyze log files
  • Squid as an open-source proxy
  • YARA to help identify malware

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required