今天就开通帐号,24,700 门业界名师课程任您挑!
File and packet comments
- [Instructor] When you're working with trace files, you may have the need to add a comment, either to a single frame, or to the entire capture, and we can do that in Wireshark. Now, during the course of your day, you might go through and, say, baseline certain subnetworks. Run a quick trace, and then take a look at it. In one of the subnetworks, you see that port 44 44 was showing up in the trace file. Now, you remember that port 44 44 was related to some malicious activity, and that could've been from back in your computer science days. We're gonna take a closer look and see what it could be. And you do a search, and you see that port 44 44 is related to Blaster Worm. Do a little bit more investigation and you see that Blaster Worm was discovered in August, 2003. Now, that's a long time ago. And you ask yourself, how is an old malware variant discovered on today's network? Well that's because what's old is new…
下载课程离线学习
下载课程到移动设备,轻松离线学习。在领英学习 iOS 或安卓版 APP 下载课程