TShark - Exporting Suspicious Content

TShark - Exporting Suspicious Content

Channel:
United States SANS Cyber Defense
Subscribers:
20,000
Published on ● Video Link: https://www.youtube.com/watch?v=9GjJNInAGyo


Duration: 1:01:19
1,056 views
0

Join SANS Certified Instructor Nik Alleyne for this live stream conversation:
TShark - Exporting Suspicious Content

Topics to be covered include:
- Scenario: Exporting suspicious/malicious content
1. Export suspicious content natively within TShark
i. From HTTP
ii. From SMB
2. Export suspicious content hidden within TShark - Data behind non standard port
3. Export content hidden in packets that TShark is unaware of. Use TShark in conjunction with other tools
4. Identifying file download paths
5. Associating users with activity
6. Identifying remote hosts

Links for Nik Alleyne:
SANS Bio: https://www.sans.org/profiles/nik-alleyne
SANS SEC503: https://www.sans.org/sec503
Website: https://www.securitynik.com/
Books: https://amzn.to/3AIsB3j

#cybersecurity #cyber #security #infosec #informationsecurity #tshark #cyberdefense #networkforensics #sansinstitute #sec503



Other Videos By SANS Cyber Defense


2021-10-15Container Monitoring
2021-10-08Applying Machine Learning to Network Anomalies | Part 3
2021-09-17Machine Learning with Zeek and Tensorflow (Part 2): Processing the Data
2021-09-07Key Tactics for Automating Security Operations
2021-09-03Machine Learning with Zeek and Tensorflow (Part 1): Talking to Zeek
2021-08-23SANS Blue Team Summit 2021
2021-08-18TShark - Working with Regular Expressions
2021-08-14SOC Automation with PowerShell Interactive Notebooks
2021-08-12Understanding And Using GIT
2021-08-06Introducing SANS role-based labs
2021-08-05TShark - Exporting Suspicious Content
2021-07-30What Really is Correlation?
2021-07-27Detecting Reconnaissance and Common Application Layer Protocols?
2021-07-27Tips for Conducting OSINT Investigations in the EU with GDPR
2021-07-26Open-Source Intelligence (OSINT) + Security Awareness
2021-07-24Do You Have What It Takes to Become a SANS Instructor?
2021-07-21Intro to packet analysis with TShark
2021-07-10Windows Event Forwarding and Event Collectors In-Depth
2021-07-08Why Take SANS SEC573: Automating Information Security with Python
2021-07-08Introducing SANS SEC573: Automating Information Security with Python
2021-07-07Over Budget? | SANS All-Around Defender Series


Tags:
nik alleyne
tshark
exporting suspicious content in tshark
tshark tutorial
exporting malicious content in tshark
free tshark tutorial
cybersecurity training
cyber security
cyber security training
information security training