Wireshark's Advanced Features

Wireshark's Advanced Features
Slide Note
Embed
Share

Uncover the advanced features of Wireshark, including Protocol Hierarchy, Conversations, Endpoints, Graphs, and Expert Infos. Dive into the details of the Protocol Hierarchy window for insights on protocol distribution, detect unusual network activities, and identify active devices through Conversations. Understand how endpoints communicate and the significance of capturing file details, timestamps, interfaces, and display filters in Wireshark's summary dialog.

  • Wireshark
  • Network Analysis
  • Protocol Hierarchy
  • Endpoints
  • Conversations
xtrog
xtrog Follow

Uploaded on Feb 23, 2025 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. Advance Features of Wireshark

  2. Contents Static Menu Protocol Hierarchy Conversation Endpoints Graphs Expert Infos

  3. Summary Dialog

  4. Summary Dialog File: General information, such as the name of the file, location of the file, format used, and encapsulation, is listed under this Time: This section will tell you the time when the first and the last packets were captured and the time elapsed (total capture duration) Capture: This lists the name of the OS along with the version used and the interface used to dump packets from the live network traffic Comments: This shows any comments that the user mentioned for reference Interface(s): This lists the details of every interface, using which the traffic is captured Display: This section gives statistics regarding any display filter that has been used and the percentage of ignored packets after a filter was applied

  5. Protocol Hierarchy The Protocol Hierarchy window provides us with an overview regarding distribution of protocols used in the communication process and how to spot unusual activities in your network that do not follow the benchmark as expected.

  6. Protocol Hierarchy

  7. Conversations When two devices are connected on the network, they are supposed to communicate; this is considered normal behavior. However, suppose you have thousands of devices connected to your network and you want to figure out the most active device that is generating too much traffic, then in that instance, the Conversations window will be quite useful.

  8. Conversations

  9. Endpoints Two devices that share data with each other are often referred to as endpoints with reference to Wireshark. As we have noticed and observed, if a host intends to talk to another host on the network, they would require some form of address to send and receive packets yes, I am talking about the physical address that every device holds.

  10. Endpoints

  11. Packet Length

  12. Graphs

  13. Graphs Name Filter Color Style X-Axis Y-Axis Intervals

  14. Expert Information

  15. Expert Information Red: This indicates errors Yellow: This refers to warnings Cyan: This refers to a note Blue: This refers to chats Green: This refers to comments Grey: This means non

  16. Practical Questions Q.1. Create a display filter for FTP packets, and apply the same in a Flow graph. Then, customize it to check the SEQ number and ACKs instead of details. Q.2. Using a previously captured file, create a Round Time Trip graph and figure out the packet whose RTT is the highest. Then, check the sequence number of that packet and verify its sequence number by comparing it with the graph. Q.3. Create a Throughput graph between a server and your client. Try to figure out at what time the throughput was at its peak and also try to check the average throughput in bytes/seconds. Q.4. If you have a requirement to view TCP packets in a raw data form, then which option will you opt for to customize the same window in order to view just the responses from the server side? Q.5. Create an IO graph and show UDP traffic in red along with general TCP traffic. Then, change the y axis unit to per bytes

  17. Practical Questions

Related


Locksmith in Ireland

Locksmith in Ireland

Tejaswini
Dynamics 365 Online Training - Microsoft Dynamics 365 Online Training

Dynamics 365 Online Training - Microsoft Dynamics 365 Online Training

Madhavi
Dynamics Advanced Warehouse Management - Hyderabad

Dynamics Advanced Warehouse Management - Hyderabad

Madhavi
Advanced Warehouse Management Course - Hyderabad

Advanced Warehouse Management Course - Hyderabad

Madhavi
The Benefits of SEO for Startups and New Businesses

The Benefits of SEO for Startups and New Businesses

Digi3
Traffic Analysis and Forensic Investigation Puzzle

Traffic Analysis and Forensic Investigation Puzzle

eloisa
Advanced Higher English: Transition and Expectations

Advanced Higher English: Transition and Expectations

adam43
Advanced Clinical Practice Framework and Pillars of Practice

Advanced Clinical Practice Framework and Pillars of Practice

april
Passive Attacks and Reconnaissance using NMAP for Network Scanning

Passive Attacks and Reconnaissance using NMAP for Network Scanning

aden
Network Traffic Analysis with Wireshark: Examples and Techniques

Network Traffic Analysis with Wireshark: Examples and Techniques

tommy-lee
SUD Life Century Gold - Individual Saving Life Insurance Plan

SUD Life Century Gold - Individual Saving Life Insurance Plan

mariah
Redefining Restaurant Management with intellibooks advanced features

Redefining Restaurant Management with intellibooks advanced features

manish2
Some Advanced and Efficient Features of AV Rental Services

Some Advanced and Efficient Features of AV Rental Services

aayun
Salinity in Seawater: Density, Composition, and Variations

Salinity in Seawater: Density, Composition, and Variations

kyliann
Wireshark Data Capture and UDP Analysis

Wireshark Data Capture and UDP Analysis

herd836
Network Monitoring Workshop - Incident Response Overview

Network Monitoring Workshop - Incident Response Overview

adalaid
Guidelines for Uploading Presentation Files at ASP-DAC 2019

Guidelines for Uploading Presentation Files at ASP-DAC 2019

zaer271
SALESFORCE PPT QUE

SALESFORCE PPT QUE

Sapalogy
Modern Teaching Technologies and Productivity Apps

Modern Teaching Technologies and Productivity Apps

erdem
Network Sniffing and Protocol Analysis Overview

Network Sniffing and Protocol Analysis Overview

rosenblum_a
History of Delhi Sultanate (A.D. 1200 - A.D. 1526) Presentation

History of Delhi Sultanate (A.D. 1200 - A.D. 1526) Presentation

mlang
Advanced AI Facial Recognition System with Turnstile Features

Advanced AI Facial Recognition System with Turnstile Features

egeur

More Related Content