network forensics – Black Bytes http://www.blackbytes.info Ruby Programming Tutorials Fri, 04 Nov 2016 21:17:31 +0000 en-US hourly 1 https://wordpress.org/?v=4.6.1 48011312 Network forensics with tshark http://www.blackbytes.info/2013/09/network-forensics-with-tshark/ Sun, 15 Sep 2013 12:18:18 +0000 http://www.blackbytes.info/?p=999 Let’s say we have a packet capture file (.pcap) and we want to get as much information out of it as possible. One option could be wireshark and its command line version tshark. Using the latter we will be able to manipulate and format the output using tools like sed, grep, awk… Extracting host names with […]

The post Network forensics with tshark appeared first on Black Bytes. Don't miss your free gift here :)

]]> 999