Tools and functionalities
Snort
Networkminer – In this room, we covered NetworkMiner, what it is, how it operates, and how to investigate pcap files. As I mentioned in the tasks before, there are a few things to remember about the NetworkMiner;
- Don’t use this tool as a primary sniffer.
- Use this tool to overview the traffic, then move forward with Wireshark and tcpdump for a more in-depth investigation.
If you like this content, make sure you visit the following rooms later on THM;
Wireshark