#11 in Computer networks & APIs books
Use arrows to jump to the previous/next product
Reddit mentions of Practical Packet Analysis: Using Wireshark to Solve Real-World Network Problems
Sentiment score: 6
Reddit mentions: 10
We found 10 Reddit mentions of Practical Packet Analysis: Using Wireshark to Solve Real-World Network Problems. Here are the top ones.
Buying options
View on Amazon.comor
- Used Book in Good Condition
Features:
Specs:
Height | 9.25 Inches |
Length | 7 Inches |
Number of items | 1 |
Release date | July 2011 |
Weight | 1.39332149584 Pounds |
Width | 0.76 Inches |
Here is a "curriculum" of sorts I would suggest, as it's fairly close to how I learned:
Generally you'll probably want to look into IA-32 and the best starting point is the Intel Architecture manual itself, the .pdf can be found here (pdf link).
Because of the depth of that .pdf I would suggest using it mainly as a reference guide while studying "Computer Systems: A Programmers Perspective" and "Secrets of Reverse Engineering".
Of course if you just want to do "pentesting/vuln assessment" in which you rely more on toolsets (for example, Nmap>Nessus>Metasploit) structured around a methodology/framework than you may want to look into one of the PACKT books on Kali or backtrack, get familiar with the tools you will use such as Nmap and Wireshark, and learn basic Networking (a simple CompTIA Networking+ book will be a good enough start). I personally did not go this route nor would I recommend it as it generally shys away from the foundations and seems to me to be settling for becoming comfortable with tools that abstract you from the real "meat" of exploitation and all the things that make NetSec great, fun and challenging in the first place. But everyone is different and it's really more of a personal choice. (By the way, I'm not suggesting this is "lame" or anything, it was just not for me.)
*edited a name out
> It's not something you can pick up from a book
It's totally something you can pick up from a book. It's not magic.
Practical Packet Analysis
Either one of these two should get you started. I haven't personally read the 2nd one, but I've heard good things.
Followup/Read along with either/both of the following:
Of the many good reads in your future, please consider this one:
http://www.amazon.com/gp/product/1593272669?keywords=practical%20packet%20analysis&qid=1457992016&ref_=sr_1_1&sr=8-1
If you're looking for an intro that will get you doing hands-on stuff quickly, I definitely recommend "Practical Packet Analysis: Using Wireshark...". Only if you want something that's far from textbook-y and will give you some insight into doing casual sysadmin type stuff. Also, "Nmap Network Scanning" will get you doing some hands-on fun activities as well. Just pay attention to local laws before doing anything that might raise red flags.
everyone recommends TCP/IP illustrated, and I've still got that on my shelf and to-do list. Can't lose there.
"Practical Packet Analysis" is by far my favorite Wireshark book.
edit: I should probably mention the book was published in 2011, so some of the information is regarding older technology, but the book is still fantastic.
I just ordered Practical Packet Analysis in order to become proficient with wireshark, I was wondering what basic (laymen) material you would recommend I read in order to understand different forms of attacks such as injecting cookies.
So much of the material easily available is very dry, and boring. (I do not find the material boring, it's more of a presentation bias[?])
I have dozens on shelf, but right now "in progress" are;
I really like the book Practical Packet Analysis
But just to get you started, try capturing traffic and then going to a website (non-ssl) like reddit.com. After loading the first page, stop the capture and take a look at it. You can search for strings you would expect in the capture, like "reddit.com" or "GET". You can start looking at the payload portion of the packets and go up to see all the layers.
Here is a really good book for Wireshark: https://www.amazon.com/dp/1593272669/_encoding=UTF8?coliid=I11HBIRF55QCWX&colid=1QE51EOZ8AY1G
/r/Wireshark has some helpful posts either on the side or if you sort by top/all.
Wireshark can be intimidating at first with all the I information you get but if you follow some guides you will do good.