Hands-On Network Forensics

Investigate network attacks and find evidence using common network forensic tools

person icon Nipun Jaswal

ebook icon Packt Publishing

language icon Language - English

updated on icon Updated on Sep, 2020

category icon Finance and Accounting,Finance,

Add to Cart Buy Now

This eBook includes

Formats : PDF, EPUB, MOBI (Downlodable)

Pages : 358

ISBN : 9781789341058

Language : English

About the Book

Book description

Gain basic skills in network forensics and learn how to apply them effectively

Key Features

Investigate network threats with ease
Practice forensics tasks such as intrusion detection, network analysis, and scanning
Learn forensics investigation at the network level

Book Description

Network forensics is a subset of digital forensics that deals with network attacks and their investigation. In the era of network attacks and malware threat, it’s now more important than ever to have skills to investigate network attacks and vulnerabilities.

Hands-On Network Forensics starts with the core concepts within network forensics, including coding, networking, forensics tools, and methodologies for forensic investigations. You’ll then explore the tools used for network forensics, followed by understanding how to apply those tools to a PCAP file and write the accompanying report. In addition to this, you will understand how statistical flow analysis, network enumeration, tunneling and encryption, and malware detection can be used to investigate your network. Towards the end of this book, you will discover how network correlation works and how to bring all the information from different types of network devices together.

By the end of this book, you will have gained hands-on experience of performing forensics analysis tasks.

What you will learn

Discover and interpret encrypted traffic
Learn about various protocols
Understand the malware language over wire
Gain insights into the most widely used malware
Correlate data collected from attacks
Develop tools and custom scripts for network forensics automation

Who this book is for

The book targets incident responders, network engineers, analysts, forensic engineers and network administrators who want to extend their knowledge from the surface to the deep levels of understanding the science behind network protocols, critical indicators in an incident and conducting a forensic search over the wire.

eBook Preview

Author Details

<a href="https://market.tutorialspoint.com/author/nipun_jaswal">Nipun Jaswal</a>

Packt are an established, trusted, and innovative global technical learning publisher, founded in Birmingham, UK with over eighteen years experience delivering rich premium content from ground-breaking authors and lecturers on a wide range of emerging and established technologies for professional development.

Packt’s purpose is to help technology professionals advance their knowledge and support the growth of new technologies by publishing vital user focused knowledge-based content faster than any other tech publisher, with a growing library of over 9,000 titles, in book, e-book, audio and video learning formats, our multimedia content is valued as a vital learning tool and offers exceptional support for the development of technology knowledge.

We publish on topics that are at the very cutting edge of technology, helping IT professionals learn about the newest tools and frameworks in a way that suits them.