Wireshark

-

 

Wireshark

Wireshark is a network security tool used to analyze or work with data sent over a network. It is used to analyze the packets transmitted over a network. These packets may have information like the source IP and the destination IP, the protocol used, the data, and some headers. The packets generally have an extension of “.pcap” which could be read using the Wireshark tool. Read thisto learn how to set up and configure Wireshark.

To use wireshark:

  • Open Wireshark and download a demo pcap file from here
  • Press”ctrl+o” to open a pcap file in wireshsark.
  • Now it can be seen that it display the list of packets along with the headers of these packets.
    Wireshark capture screen


Comments

Post a Comment

Popular posts from this blog

Nmap

-
Image
1. Nmap Nmap is an open-source network scanner that is used to recon/scan networks. It is used to discover hosts, ports, and services along with their versions over a network. It sends packets to the host and then analyzes the responses in order to produce the desired results. It could even be used for host discovery, operating system detection, or scanning for open ports. It is one of the most popular reconnaissance tools. To use nmap: Ping the host with ping command to get the IP address ping hostname Open the terminal and enter the following command there: nmap -sV ipaddress Replace the IP address with the IP address of the host you want to scan. It will display all the captured details of the host. To know more, you can read more from here .  
Read more

metasploit Framework

-
Image
   metasploit Framework Metasploit is an open-source tool that was designed by Rapid7 technologies. It is one of the world’s most used penetration testing frameworks. It comes packed with a lot of exploits to exploit the vulnerabilities over a network or operating systems. Metasploit generally works over a local network but we can use Metasploit for hosts over the internet using “ port forwarding “. Basically Metasploit is a CLI based tool but it even has a GUI package called “ armitage ” which makes the use of Metasploit more convenient and feasible. To use metasploit: Metasploit comes pre-installed with Kali Linux Just enter “ msfconsole ” in the terminal.  
Read more

nslookup

-
Image
  nslookup command in Linux with Examples Difficulty Level : Expert Last Updated : 24 May, 2019 Nslookup (stands for “Name Server Lookup”) is a useful command for getting information from DNS server. It is a network administration tool for querying the Domain Name System (DNS) to obtain domain name or IP address mapping or any other specific DNS record. It is also used to troubleshoot DNS related problems. Syntax: nslookup [option]   Options of nslookup command: nslookup google.com
Read more