Learn Wireshark - Second Edition
暫譯: 學習 Wireshark - 第二版
Bock, Lisa
- 出版商: Packt Publishing
- 出版日期: 2022-08-05
- 售價: $1,800
- 貴賓價: 9.5 折 $1,710
- 語言: 英文
- 頁數: 606
- 裝訂: Quality Paper - also called trade paper
- ISBN: 180323167X
- ISBN-13: 9781803231679
-
相關分類:
Wireshark
立即出貨 (庫存=1)
買這商品的人也買了...
-
透視 C語言指標-深度探索記憶體管理核心技術 (Understanding and Using C Pointers)$480$408 -
$352ARM 嵌入式 Linux 系統開發詳解, 2/e -
Kali Linux 滲透測試工具|花小錢做資安,你也是防駭高手, 3/e$880$695 -
$1,140The Pentester Blueprint: Starting a Career as an Ethical Hacker (Paperback) -
突破困境:資安開源工具應用(iT邦幫忙鐵人賽系列書)$550$429 -
$559嵌入式 C語言自我修養 — 從芯片、編譯器到操作系統 -
WebSecurity 網站滲透測試:Burp Suite 完全學習指南 (iT邦幫忙鐵人賽系列書)$600$468 -
不只是工程師才要懂的 App 資訊安全:取得資安檢測合格證書血淚史(iT邦幫忙鐵人賽系列書)$600$468 -
Hack the Cybersecurity Interview: A complete interview preparation guide for jumpstarting your cybersecurity career (Paperback)$1,700$1,615 -
ChatGPT 指令大全與創新應用:GPT-4 搶先看、串接 API、客服機器人、AI英文家教,一鍵打造 AI智慧產品$680$530 -
$403惡意代碼逆向分析基礎詳解 -
原子嵌入式 Linux 驅動開發詳解與實戰 (ARM Linux 驅動)$1,068$1,015 -
精通無瑕程式碼:工程師也能斷捨離!消除複雜度、提升效率的 17個關鍵技法 (The Art of Clean Code: Best Practices to Eliminate Complexity and Simplify Your Life)$600$468 -
SRE 實踐與開發平台指南:從團隊協作、原則、架構和趨勢掌握全局,做出精準決策$620$484 -
Web 安全攻防:滲透測試實戰指南, 2/e$774$735 -
鍛鍊問題解決力!演算法與資料結構應用全圖解$650$513
相關主題
商品描述
Expertly analyze common protocols such as TCP, IP, and ICMP, along with learning how to use display and capture filters, save and export captures, create IO and stream graphs, and troubleshoot latency issues
Key Features
- Gain a deeper understanding of common protocols so you can easily troubleshoot network issues
- Explore ways to examine captures to recognize unusual traffic and possible network attacks
- Learn advanced techniques, create display and capture filters, and generate IO and stream graphs
Book Description
Wireshark is a popular and powerful packet analysis tool that helps network administrators investigate latency issues and potential attacks. Over the years, there have been many enhancements to Wireshark's functionality. This book will guide you through essential features so you can capture, display, and filter data with ease. In addition to this, you'll gain valuable tips on lesser-known configuration options, which will allow you to complete your analysis in an environment customized to suit your needs.
This updated second edition of Learn Wireshark starts by outlining the benefits of traffic analysis. You'll discover the process of installing Wireshark and become more familiar with the interface. Next, you'll focus on the Internet Suite and then explore deep packet analysis of common protocols such as DNS, DHCP, HTTP, and ARP. The book also guides you through working with the expert system to detect network latency issues, create I/O and stream graphs, subset traffic, and save and export captures. Finally, you'll understand how to share captures using CloudShark, a browser-based solution for analyzing packet captures.
By the end of this Wireshark book, you'll have the skills and hands-on experience you need to conduct deep packet analysis of common protocols and network troubleshooting as well as identify security issues.
What you will learn
- Master network analysis and troubleshoot anomalies with Wireshark
- Discover the importance of baselining network traffic
- Correlate the OSI model with frame formation in Wireshark
- Narrow in on specific traffic by using display and capture filters
- Conduct deep packet analysis of common protocols: IP, TCP, and ARP
- Understand the role and purpose of
- ICMP, DNS, HTTP, and DHCP
- Create a custom configuration profile and personalize the interface
- Create I/O and stream graphs to better visualize traffic
Who this book is for
If you are a network administrator, security analyst, student, or teacher and want to learn about effective packet analysis using Wireshark, then this book is for you. In order to get the most from this book, you should have basic knowledge of network fundamentals, devices, and protocols along with an understanding of different topologies.
商品描述(中文翻譯)
專業分析常見的協議,如 TCP、IP 和 ICMP,並學習如何使用顯示和捕獲過濾器、保存和導出捕獲、創建 I/O 和流圖,以及排除延遲問題。
主要特點
- 深入了解常見協議,以便輕鬆排除網路問題
- 探索檢查捕獲的方式,以識別異常流量和可能的網路攻擊
- 學習進階技術,創建顯示和捕獲過濾器,並生成 I/O 和流圖
書籍描述
Wireshark 是一款流行且強大的封包分析工具,幫助網路管理員調查延遲問題和潛在攻擊。多年來,Wireshark 的功能有了許多增強。本書將指導您了解基本功能,以便輕鬆捕獲、顯示和過濾數據。此外,您還將獲得有關不太知名的配置選項的寶貴提示,這將使您能夠在適合您需求的環境中完成分析。
這本《學習 Wireshark》的更新第二版首先概述了流量分析的好處。您將發現安裝 Wireshark 的過程,並對界面變得更加熟悉。接下來,您將專注於 Internet 套件,然後探索常見協議(如 DNS、DHCP、HTTP 和 ARP)的深度封包分析。本書還指導您使用專家系統檢測網路延遲問題,創建 I/O 和流圖,子集流量,以及保存和導出捕獲。最後,您將了解如何使用 CloudShark 共享捕獲,這是一種基於瀏覽器的解決方案,用於分析封包捕獲。
在這本 Wireshark 書籍結束時,您將擁有進行常見協議的深度封包分析和網路故障排除所需的技能和實踐經驗,並能識別安全問題。
您將學到的內容
- 精通網路分析,並使用 Wireshark 排除異常
- 發現基準網路流量的重要性
- 將 OSI 模型與 Wireshark 中的幀形成相關聯
- 通過使用顯示和捕獲過濾器,縮小特定流量
- 進行常見協議的深度封包分析:IP、TCP 和 ARP
- 理解 ICMP、DNS、HTTP 和 DHCP 的角色和目的
- 創建自定義配置檔並個性化界面
- 創建 I/O 和流圖以更好地可視化流量
本書適合誰
如果您是網路管理員、安全分析師、學生或教師,並希望學習如何使用 Wireshark 進行有效的封包分析,那麼這本書適合您。為了充分利用本書,您應該具備網路基本知識、設備和協議的理解,以及對不同拓撲的認識。
作者簡介
Lisa Bock is an experienced author with a demonstrated history of working in the e-learning industry. She is a security ambassador with a broad range of IT skills and knowledge, including on Cisco Security, CyberOps, Wireshark, biometrics, ethical hacking, and IoT. Lisa is an author for LinkedIn Learning and an award-winning speaker who has presented at several national conferences. She holds an MS in computer information systems/information assurance from UMGC. Lisa was an associate professor in the IT department at Pennsylvania College of Technology (Williamsport, PA) from 2003 until her retirement in 2020. She is involved with various volunteer activities, and she and her husband Mike enjoy bike riding, watching movies, and traveling.
作者簡介(中文翻譯)
Lisa Bock 是一位經驗豐富的作者,擁有在電子學習產業工作的豐富歷史。她是一位安全大使,具備廣泛的 IT 技能和知識,包括 Cisco Security、CyberOps、Wireshark、生物識別技術、道德駭客以及物聯網 (IoT)。Lisa 是 LinkedIn Learning 的作者,也是多個全國會議的獲獎演講者。她擁有來自 UMGC 的計算機資訊系統/資訊保障碩士學位。Lisa 從 2003 年至 2020 年退休前,曾擔任賓夕法尼亞科技學院 (Pennsylvania College of Technology, Williamsport, PA) IT 系的副教授。她參與各種志願活動,並且與丈夫 Mike 一起享受騎自行車、看電影和旅行。
目錄大綱
1. Appreciating Traffic Analysis
2. Using Wireshark
3. Installing Wireshark
4. Exploring the Wireshark Interface
5. Tapping into the Data Stream
6. Personalizing the Interface
7. Using Display and Capture Filters
8. Outlining the OSI Model
9. Decoding TCP and UDP
10. Managing TCP Connections
11. Analyzing IPv4 and IPv6
12. Discovering ICMP
13. Diving into DNS
14. Examining DHCP
15. Decoding HTTP
16. Understanding ARP
17. Determining Network Latency Issues
18. Subsetting, Saving, and Exporting Captures
19. Discovering I/O and Stream Graphs
20. Using CloudShark for Packet Analysis
目錄大綱(中文翻譯)
1. Appreciating Traffic Analysis
2. Using Wireshark
3. Installing Wireshark
4. Exploring the Wireshark Interface
5. Tapping into the Data Stream
6. Personalizing the Interface
7. Using Display and Capture Filters
8. Outlining the OSI Model
9. Decoding TCP and UDP
10. Managing TCP Connections
11. Analyzing IPv4 and IPv6
12. Discovering ICMP
13. Diving into DNS
14. Examining DHCP
15. Decoding HTTP
16. Understanding ARP
17. Determining Network Latency Issues
18. Subsetting, Saving, and Exporting Captures
19. Discovering I/O and Stream Graphs
20. Using CloudShark for Packet Analysis
