In this chapter, we worked with a variety of log types and gathered inputs to aid our network forensics exercise. In the next chapter, we will learn how we can identify rogue access points, which can allow an attacker to view all your communication logs, and we will also look at strategies to identify and physically find those rogue devices.
- Title Page
- Copyright and Credits
- Dedication
- About Packt
- Contributors
- Preface
- Section 1: Obtaining the Evidence
- Introducing Network Forensics
- Technical Concepts and Acquiring Evidence
- Section 2: The Key Concepts
- Deep Packet Inspection
- Statistical Flow Analysis
- Combatting Tunneling and Encryption
- Section 3: Conducting Network Forensics
- Investigating Good, Known, and Ugly Malware
- Investigating C2 Servers
- Investigating and Analyzing Logs
- WLAN Forensics
- Automated Evidence Aggregation and Analysis
- Other Books You May Enjoy
- Assessments
Summary
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.