-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John Jardine wrote: > Hi, > > For those that would like copies of the slides from my Jan 7th > presentation - you can download them from: > http://clug.ca/node/585 > I promised to post some links regarding packet sniffing tutorials, books, and firefox plugins.
The first two links are specific to tcpdump, a command line utility. The principles should translate to wireshark (I believe that wireshark uses the same syntax). I do believe that you should start with tcpdump and only move to wireshark when you have a solid grasp of the principles. Wireshark is more than a packet sniffer, it can also read the saved captures from tcpdump. The take home message here is start with tcpdump. http://dmiessler.com/study/tcpdump/ http://dmiessler.com/study/tcpdump_recipes/ The book I was talking about for developers and interested users alike was "the TCP/IP Guide" by Charles M. Kozierok. http://www.amazon.ca/TCP-Guide-Comprehensive-Illustrated-Protocols/dp/159327047X/ref=sr_1_7?ie=UTF8&s=books&qid=1231439498&sr=8-7 It may sound like a dry topic but the author does a superb job in keeping the material interesting. His writing style is entertaining without getting in the way of technical accuracy. The "Linux Firewalls" by Michael Rash is also excellent. http://www.amazon.ca/Linux-Firewalls-Michael-Rash/dp/1593271417/ref=sr_1_1?ie=UTF8&s=books&qid=1231439534&sr=1-1 The firefox plugin was called noscript, and can be found here: http://noscript.net/ I also use the jsview and showip Firefox addons, for those who wish to dig deeper: JSView https://addons.mozilla.org/en-US/firefox/addon/2076 ShowIP https://addons.mozilla.org/en-US/firefox/addon/590 Hth, -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAklmSfsACgkQwRXgH3rKGfNfrgCfV/vX3jK/rJ/mwHrjnX6BYINC iosAoJDoBx1YIzTMAH0qRgjvowqZ5Kb7 =BkVT -----END PGP SIGNATURE----- _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
