I published the following diary on isc.sans.org: “Full Packet Capture for Dummies” When a security incident occurred and must be investigated, the Incident Handler’s Holy Grail is a network capture file. It contains all communications between the hosts on the network. These metadata are already in goldmine: source and destination
[The post [SANS ISC Diary] Full Packet Capture for Dummies has been first published on /dev/random]
from [SANS ISC Diary] Full Packet Capture for Dummies
No comments:
Post a Comment