Description:
Author: Vivek Ramachandran
Publisher: PentesterAcademy
Language: English
Torrent Contains: 21 Files
Course Source:
https://www.pentesteracademy.com/course?id=42 Description
Most of us have used Wireshark either academically or professionally for traffic analysis. Its a great tool for microscopic analysis of what is happening in the network. However, its greatest strength is also its greatest weakness i.e. it is extremely difficult to do macroscopic analysis, create custom reports, extract only certain fields from packets for offline analysis etc. This is where Tshark comes in! Tshark is a command line tool created by the Wireshark team and shares the same powerful parsing engine as Wireshark. It is capable of doing most things we've come to love Wireshark for, but with the "from command line" advantage. This makes it ideal for batch analysis, offline processing and routine automation of traffic analysis tasks. In this course, we will explore many of these capabilities. It is assumed you have a basic working knowledge of Wireshark and traffic analysis.
About Author
Vivek Ramachandran is the Founder and Chief Trainer at Pentester Academy. He discovered the Caffe Latte attack, broke WEP Cloaking - a WEP protection schema, conceptualized enterprise Wi-Fi Backdoors and created Chellam, the world's first Wi-Fi Firewall. He is also the author of multiple five star rated books which have together sold over 13,000+ copies worldwide and have been translated to multiple languages.
Vivek started SecurityTube.net in 2007, a YouTube for security which current aggregates the largest collection of security research videos on the web. SecurityTube Training and Pentester Academy now serve thousands of customers from over 90 countries worldwide. He also conducts in-person trainings in the US, Europe and Asia. Vivek's work on wireless security has been quoted in BBC online, InfoWorld, MacWorld, The Register, IT World Canada etc. places. He has spoken/trained at top conferences around the world including Black Hat USA, Europe and Abu Dhabi, Defcon, Hacktivity, Brucon, SecurityByte, SecurityZone, Nullcon, C0C0n etc.
Vivek has over a decade of experience in security and has keen interest in the areas of Wireless, Mobile, Network and Web Application Pentesting, Shellcoding, Reversing and Exploit Research. He loves programming in Python, C and Assembly.
Course Videos List
1 Course Introduction and Lab Setup
2 Tshark: Interface Enumeration and Capturing Packets
3 Tshark: Exporting Packets as PDML, PSML, JSON and ELK
4 Tshark: Converting Packets to HTML
5 Tshark: Display and Capture Filters via Command Line
6 Tshark: Custom Field Extraction from Packets
7 Tshark: Pipelining Extracted Data with Sort and Uniq
8 Tshark Summaries: Protocols, Summaries and Read Filters
9 Tshark Summaries: Conversations and Endpoints
10 Tshark Summaries: Miscellaneous
11 Tshark: Multi-File Capture with Ring Buffer
12 Tshark: Decode Unknown Protocol As
13 Tshark: Preference Values: SSL Decryption
14 Tshark: Python Automation: Pyshark Basics
15 Tshark: Python Automation: Python Deep Dive.