I've been tasked to attempt something far outside of my normal realm, but don't know where to start. Due to the fact that my logs are work related, I cannot/will not post the logs here, but I'm hoping I can still get pointed in the right direction to find information on how to interpret, compare, and contrast the logs I'm gathering. In other words, can someone tell me of a good resource for learning how to read and interpret .pcapng or .json logs? Issue: using a work VPN pointed at a network proxy, IE and Firefox block correctly. However, Google …

Member Avatar
Member Avatar
+0 forum 3

Hi How can I find IP and MAC address of attacker and victims from .pcap , which is capture from a man-in-the-middle attack!(IT-forensics). I will be very thankful for your ansewr!

Member Avatar
Member Avatar
+0 forum 2

Hello everyone! I want to monitor my network using wireshark 's tshark command line tool. What i want to accomplish is to redirect tshark's output to a c++ application, so i can examine data and output a more comprehensive analysis without keeping a huge amount of data. I am working on windows, and usually code in mfc. So i would like any info on how to get the command line stream into my program, in order to analyze it. Anyway, all i want, is tips on how to get a continuous stream of data from a command line application. Any …

Member Avatar
Member Avatar
+0 forum 4

I am testing wireshark for learning purposes. I wanted to try out a tutorial that hacks a facebook account stealing cookie information. I couldn't manage to hack my facebook account because wireshark is sending me truncated packets that I can't get cookie info out of. **This topography of the network**: my desktop PC is connected to the Internet to a hub (D-LINK router) via LAN (ethernet cable). I have a notebook connected to Internet via Wi-Fi to the same hub (D-LINK router). I access facebook on my notebook on WIN XP OS. I monitor the packets with wireshark on my …

Member Avatar
Member Avatar
+0 forum 1

Hi, I have an ASUS N53SV laptop with an Atheros AR9002WB-1NG Wireless Network Adapter. I would like to monitor WIFI networks using WireShark or other programs. However, I'm encountering a problem that I only see my own traffic. I've found that the card has to be in monitoring mode in order to capture packages not directed to me. I'd like to know if monitoring option is available for this card on Windows or Linux and if so, how should I configure it? I already have WinPCap installed on my computer. Thank you for information.

Member Avatar
Member Avatar
+0 forum 8

Hello there :) I am working a final lab in computer science course, and I have this following problem: We are said to use Wireshark, and ping a certain page with -l 3000. Then, we should check the IP Fragmentation - and in Wireshark the value was 3008 bytes. Where did those 8 extra bytes come from? Are they the FRAGMENTATION OFFSET? Thanks in advance!

Member Avatar
Member Avatar
+0 forum 1

The End.