Wireshark Essentials (Paperback)

James H. Baxter

  • 出版商: Packt Publishing
  • 出版日期: 2014-10-30
  • 售價: $1,210
  • 貴賓價: 9.5$1,150
  • 語言: 英文
  • 頁數: 194
  • 裝訂: Paperback
  • ISBN: 1783554630
  • ISBN-13: 9781783554638
  • 相關分類: Wireshark
  • 海外代購書籍(需單獨結帳)

買這商品的人也買了...

商品描述

Get up and running with Wireshark to analyze network packets and protocols effectively

About This Book

  • Troubleshoot problems, identify security risks, and measure key application performance metrics with Wireshark
  • Gain valuable insights into the network and application protocols, and the key fields in each protocol
  • Configure Wireshark, and analyze networks and applications at the packet level with the help of practical examples and step-wise instructions

Who This Book Is For

This book is aimed at IT professionals who want to develop or enhance their packet analysis skills. Basic familiarity with common network and application services terms and technologies is assumed; however, expertise in advanced networking topics or protocols is not required. Readers in any IT field can develop the analysis skills specifically needed to complement and support their respective areas of responsibility and interest.

What You Will Learn

  • Discover how packet analysts view networks and the role of protocols at the packet level
  • Capture and isolate all the right packets to perform a thorough analysis using Wireshark's extensive capture and display filtering capabilities
  • Use the optimal timestamp displays, packet marking and coloring, and protocol-level settings for effective analysis of packets
  • Select and configure the appropriate Wireshark features and functions for the analysis task at hand
  • Troubleshoot connectivity and functionality issues in your network
  • Analyze and report the leading causes of poor application performance
  • Analyze packets to detect and identify malicious traffic and security threats
  • Leverage the Wireshark command-line utilities for high performance or scripted analysis activities

In Detail

This book introduces the Wireshark network analyzer to IT professionals across multiple disciplines.

It starts off with the installation of Wireshark, before gradually taking you through your first packet capture, identifying and filtering out just the packets of interest, and saving them to a new file for later analysis. The subsequent chapters will build on this foundation by covering essential topics on the application of the right Wireshark features for analysis, network protocols essentials, troubleshooting, and analyzing performance issues. Finally, the book focuses on packet analysis for security tasks, command-line utilities, and tools that manage trace files.

Upon finishing this book, you will have successfully added strong Wireshark skills to your technical toolset and significantly increased your value as an IT professional.

商品描述(中文翻譯)

使用Wireshark進行網絡封包和協議分析的入門指南

關於本書

- 使用Wireshark解決問題,識別安全風險,並測量關鍵應用程序性能指標
- 獲取有關網絡和應用程序協議以及每個協議中的關鍵字段的寶貴見解
- 通過實際示例和逐步指導配置Wireshark,並在封包級別上分析網絡和應用程序

適合閱讀對象

本書面向希望開發或提升封包分析技能的IT專業人士。假設讀者對常見的網絡和應用程序服務術語和技術有基本的熟悉;然而,不需要對高級網絡主題或協議有專業知識。任何IT領域的讀者都可以開發專門需要的分析技能,以補充和支持他們各自的責任和興趣領域。

你將學到什麼

- 了解封包分析師如何查看網絡以及協議在封包級別上的作用
- 使用Wireshark的廣泛捕獲和顯示過濾功能,捕獲和隔離所有正確的封包進行全面分析
- 使用最佳的時間戳顯示、封包標記和著色以及協議級別設置,有效分析封包
- 選擇並配置適當的Wireshark功能和功能,以應對分析任務
- 解決網絡連接性和功能問題
- 分析並報告導致應用程序性能不佳的主要原因
- 分析封包以檢測和識別惡意流量和安全威脅
- 利用Wireshark命令行工具進行高性能或腳本化分析活動

詳細內容

本書向多個領域的IT專業人員介紹了Wireshark網絡分析器。

首先介紹Wireshark的安裝,然後逐步引導您進行第一次封包捕獲,識別並過濾出感興趣的封包,並將它們保存到新文件以供以後分析。隨後的章節將在此基礎上進一步介紹如何應用正確的Wireshark功能進行分析,網絡協議基礎知識,故障排除和分析性能問題。最後,本書重點介紹了用於安全任務的封包分析、命令行工具和管理跟踪文件的工具。

閱讀完本書後,您將成功將強大的Wireshark技能添加到您的技術工具箱中,並顯著提高您作為IT專業人士的價值。