From the course: CompTIA CySA+ (CS0-002) Cert Prep: 1 Threat Management
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Protocol analyzers
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 1 Threat Management
Protocol analyzers
- Protocol analyzers are an important tool available to both network and security professionals. Protocol analyzers allow administrators to peer into the actual packets traveling on a network and inspect them in deep detail. This is very useful when trying to troubleshoot network issues or investigate security incidents. Protocol analyzers must be used careful however because they can also jeopardize the confidentiality of sensitive information when they're used in the wrong hands. Let's take a look at a protocol analyzer in use. We're going to use Wire Shark. The most common and free protocol analyzer. Right here I'm running Wire Shark on a server that runs in the cloud and I have an RDP session open to the system from my laptop that's running over Port 3389. I'm going to go here and just click Start to initiate the packet capture and immediately the screen begins filling up with lines of communication. Each one of…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.