How do tshark, ngrep, and tcpdump Differ and When to Use Them

What happens on a network has always been an interest of mine. In graduate school in the 1980s, I worked on networking software. Later I used software protocol analyzers such as netwatch (later the commercial LANWatch) to dissect packets. A few years ago I contributed to what is now the Wireshark protocol analyzer. Lanwatch uses […]
Read More ›

Unleashing Wireshark’s Powerful Follow TCP Stream Feature

In security courses such as Learning Tree’s System and Network Security Introduction, we often hear about the insecurity of protocols such as Telnet. These older protocols send their data – including login credentials – over the network in the clear. While ssh, a secure alternative to Telnet, is used in many applications today, many sites […]
Read More ›

How Many Linux Systems Do You Use? Don’t Answer Too Quickly

“Linux? Where you have to type everything and it’s all a bunch of cryptic nonsense like this? ls -laRF | less I don’t use it, I never would!” Don’t answer so fast. While Linux runs 97% of the top 500 supercomputers in the world, it runs on many devices you encounter in everyday life. And it’s not just […]
Read More ›

Wireshark and Giving Back to the Open Source Community

I am a contributor to Wireshark. OK, it’s been a while since I contributed, but I did make two useful contributions and I plan on doing more in the future. I am surely not one of the “top ten” or even “top thirty” contributors. Others have done far more than I have, However, I’d like […]
Read More ›

Wireshark as a Security Tool – Part 2

In A Brief Introduction to Wireshark as a Security Tool I showed a few features of Wireshark that might be useful for the security administrator. In this next installment we will look at some more Wireshark features. One of the tools Wireshark has is the ability to look at wireless management and control frames (although […]
Read More ›

Type to search

Do you mean "" ?

Sorry, no results were found for your query.

Please check your spelling and try your search again.