[MEETUP] WireShark WorkShop

[mitilan]

Анализируем сетевой трафик при помощи Wireshark. Попутно исследуем протоколы.

[mitilan]

https://osqa-ask.wireshark.org/questions/43920/how-to-replay-the-video-from-packets-captured-by-wireshark

[mitilan]

Коллекция pcap-ов https://www.netresec.com/index.ashx?page=PcapFiles Да и вообще поиск по pcap collection и т.п. выдаёт много интересного +https://www.malware-traffic-analysis.net/

[mitilan]

pcap файлы к примерам из книги "Анализ пакетов" Криса Сандерса https://nostarch.com/packetanalysis3

[mitilan]

Архив SharkFest https://sharkfestus.wireshark.org/retrospective

[mitilan]

Quite a nice set of articles on building Wireshark dissectors with LUA https://mika-s.github.io/topics/

[mitilan]

Использование libpcap https://eax.me/libpcap/ https://github.com/afiskon/c-libpcap-example

[mitilan]

Recommended methods and limitations for running tcpdump on a BIG-IP system https://support.f5.com/csp/article/K6546

[mitilan]

Attacking Network Protocols: A Hacker's Guide to Capture, Analysis, and Exploitation https://amazon.com/Attacking-Network-Protocols-Analysis-Exploitation-ebook/dp/B071V4DYVC

[mitilan]

Андрей Сазыкин, youtube https://www.asozykin.ru/courses/networks_online