Week 5
Traffic Analysis.
Tools used for for protocol analysis :
- Wireshark – Automatically keeps and displays protocol details within a packet and filters are available. It has number of packets , packet details, packet bytes, and all protocols available
- Tshark – same as Wireshark, but it is a CLI instead of GUI
- Packet Summary Markup Language (PSML) – XML format generator for details of a certain protocol
Protocol Identification Techniques :
- Protocol identification – identify protocols
- Protocol decoding – reading the data
- Exporting fields
No Comments »
RSS feed for comments on this post. TrackBack URL