From the course: Network Forensics
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Wireshark
- [Instructor] Wireshark is one of the most well known packet or protocol analysis software programs. This type of software is also called packet sniffer. It captures the entire stack of network protocol layers such as data link, network, transport and application. We've already tried Wireshark on several occasions and you know how feature-rich the tool is in many different situations. Personally I like how I can show packets and their associated protocols in action in real time when I explain networking concepts. It's a powerful educational tool but it's also a highly practical and useful tool for network forensics professionals as you already know. Once you get used to the basic features of Wireshark it's time to learn some more advanced features to make your life easier when using Wireshark. One of the extra Wireshark features is filters. Wireshark often gives you a sense of information overload because there's just so much relevant information a end user has to absorb. Knowing how…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.