Tactical Wireshark: A Deep Dive into Intrusion Analysis, Malware Incidents, and Extraction of Forensic Evidence

Index

Abstract methodology

Access Control List (ACL)

ACK flag set

Active mode

Address Resolution Protocol (ARP)

Ad-hoc

Advanced Encryption Standard (AES)

Advanced features of Wireshark

adore attack tool

cryptographic information, packet

configure the keytab file

decrypted Kerberos TCP data

decrypted Kerberos UDP data

Kerberos communication sample file

krbtgt

krbtgt UDP stream

ticket

detected error stream

expert information

capture file

error indication

severity level color

firewall ACL rules

SeeFirewall ACL rules

LKM

malformed TELNET packet

protocol dissector

remote packet capture

SeeRemote packet capture, Wireshark

ALFA wireless network card

APP0

Application Reply (AP-REP)

Application Request (AP-REQ)

ARP communication

ARP reply

ARP request

Artifacts

AS-REP packet

.au file format ...

Get Tactical Wireshark: A Deep Dive into Intrusion Analysis, Malware Incidents, and Extraction of Forensic Evidence now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Tactical Wireshark: A Deep Dive into Intrusion Analysis, Malware Incidents, and Extraction of Forensic Evidence by Kevin Cardwell

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly