wireshark – Page 15 – WindowsTechs.com

What type of attack could this be ? (Wireshark pcap) [closed]

Posted on July 4, 2020 by siheder

If I understand it correctly the "client" sent an unencrypted password to the pop3 server consisting of a long string of As. Is this a type of attack and if yes, how does it work?

Continue reading What type of attack could this be ? (Wireshark pcap) [closed]→

What kind of SMB attack is this? (Wireshark pcap) [closed]

Posted on July 4, 2020 by siheder

Hi, I am suspecting that this should be a kind of SMB exploit. Can you identify it ?

Continue reading What kind of SMB attack is this? (Wireshark pcap) [closed]→

TLS Handshake: Client Hello’s for SSLv2.0 starting with hex 0x80. Why? [closed]

Posted on June 30, 2020 by Andre Guerra

I am working on understanding the TLS Handshake process with Wireshark and an open-source TLS scanning tool.
I noticed that all SSLv2.0 Client Hello messages start with hex 0x80. Can anyone explain why that is? I noticed all the subsequent… Continue reading TLS Handshake: Client Hello’s for SSLv2.0 starting with hex 0x80. Why? [closed]→

Can anyone look into wireshark logs and say if anything suspicious? [migrated]

Posted on June 22, 2020 by Want to work at Tesla.

Is such type of question acceptable here?

Continue reading Can anyone look into wireshark logs and say if anything suspicious? [migrated]→

Unexpected gratuitous ARP request for 0.0.0.0 [closed]

Posted on June 21, 2020 by max

I’m trying to understand all facets of MAC address spoofing by testing it on real world implementations. I have Kali set up in VMWare using bridged mode on Windows over LAN. I used Ettercap’s port-stealing feature to port-steal my smartpho… Continue reading Unexpected gratuitous ARP request for 0.0.0.0 [closed]→

List of malware (specifically adware) that utilizes TLS [closed]

Posted on June 17, 2020 by user236779

I’m currently looking to monitor network traffic from malware (adware) that uses TLS. Is it common for adware to take advantage of TLS, and if so, what are some examples and where can I download samples for analysis on a virtual machine.

… Continue reading List of malware (specifically adware) that utilizes TLS [closed]→

Malformed packets for OpenVPN [closed]

Posted on June 15, 2020 by meta_warrior

I have setup OpenVPN on pfsense 2.4.5, and captured sample data for my OpenVPN traffic. However, I observed that most of packets captures for OpenVPN is malformed.

What are the possible reasons? I have placed a sample of the captures in t… Continue reading Malformed packets for OpenVPN [closed]→

Wireshark doesn’t capture on interface wlan0mon

Posted on May 24, 2020 by Pat Zio

I am using Wireshark to scan for unwanted traffic in my home network. I enabled monitor mode for wlan0 using:

airmon-ng check kill
airmon-ng start wlan0

When I check iwconfig I can see the wlan0mon interface which has monitor mode enab… Continue reading Wireshark doesn’t capture on interface wlan0mon→

what i have to do airodump-ng run but bssid is showing not associated rang is gud also fern not showing any network [closed]

Posted on May 19, 2020 by Ds dhaliwal

what to do airodum-ng bssid not associated

Continue reading what i have to do airodump-ng run but bssid is showing not associated rang is gud also fern not showing any network [closed]→

Webhook Doesn’t send Slack notification in Python Script

Posted on May 7, 2020 by Khalil

I have a final year project and I chose honeypot as a subject. The idea is I capture/sniff attacker’s connections with tshark and save the log file. After that I made a script that takes source IPs from the pcap file and sends information … Continue reading Webhook Doesn’t send Slack notification in Python Script→