Hands-On Network Forensics
- FREE Subscription Read for free
-
What do you get with a Packt Subscription?
- Instant access to this title and 7,500+ eBooks & Videos
- Constantly updated with 100+ new titles each month
- Breadth and depth in over 1,000+ technologies
-
Free ChapterSection 1: Obtaining the Evidence
-
Introducing Network Forensics
-
Technical Concepts and Acquiring Evidence
-
Section 2: The Key Concepts
-
Deep Packet Inspection
-
Statistical Flow Analysis
-
Combatting Tunneling and Encryption
-
Section 3: Conducting Network Forensics
-
Investigating Good, Known, and Ugly Malware
-
Investigating C2 Servers
-
Investigating and Analyzing Logs
-
WLAN Forensics
-
Automated Evidence Aggregation and Analysis
-
Other Books You May Enjoy
-
Assessments
Network forensics is a subset of digital forensics that deals with network attacks and their investigation. In the era of network attacks and malware threat, it’s now more important than ever to have skills to investigate network attacks and vulnerabilities.
Hands-On Network Forensics starts with the core concepts within network forensics, including coding, networking, forensics tools, and methodologies for forensic investigations. You’ll then explore the tools used for network forensics, followed by understanding how to apply those tools to a PCAP file and write the accompanying report. In addition to this, you will understand how statistical flow analysis, network enumeration, tunneling and encryption, and malware detection can be used to investigate your network. Towards the end of this book, you will discover how network correlation works and how to bring all the information from different types of network devices together.
By the end of this book, you will have gained hands-on experience of performing forensics analysis tasks.
- Publication date:
- March 2019
- Publisher
- Packt
- Pages
- 358
- ISBN
- 9781789344523