top of page
Search

TCP Sequence Number in ACK Scans
During a recent class, I received a question related to ACK scans. "What Sequence Number would you see on the response to an ACK scan?"...

Laura Chappell

In the Wake of XZ - 3 Steps to Use Wireshark Securely
The discovery of malicious code in the XZ utils tarball has shaken up a lot of folks. XZ utils have been removed from Github and the...

Laura Chappell

Detect Suspicious Traffic with "TCP Conversation Completeness"
In my last blog entry, I explained how Wireshark calculates TCP Conversation Completeness based on the TCP flags and whether data is seen...

Laura Chappell


Wireshark v4 Profile Templates
When Wireshark v4 was released, I received a number of emails complaining about the new layout (Packet Details side-by-side with Packet...

Laura Chappell

Packet Pub Quiz Time!
READY FOR SOME GEEKY FUN? Throughout my career in packet analysis, I've made some great friends with similar interests. Tony Fortunato...

Laura Chappell

The "Legit" DDoS on PG&E
See the legitimate DDoS on PG&Es site after they announced that power would be shut off to upwards of 800,000 customers in October 2019.
Laura Chappell

HTTP to HTTPS Redirection
Get familiar with HTTP's 301 redirection process to a secure connections. Download the sample trace file and follow along.
Laura Chappell

GeoIP Mapping in Wireshark
A sexy features in Wireshark, for sure - global mapping based on MaxMind's GeoLite2 geolocation database files! Configure and use it today!
Laura Chappell

Analyze a Malicious HTTP Redirection
It was supposed to be a simple DNS name error trace file... but when I was suddenly redirected to a malicious URL, I went down a rabbit hole
Laura Chappell

Part 2 of 2: Spies, Espionage, Ransomware, and Harold
The NSA tool leak continues to plague the world as NotPetya takes down Ukranian computers, and we meet Hal999999999 and Israeli hackers.
Laura Chappell

Network Forensics Cheat Sheet
I guess we're all a bunch of cheaters! <grin> I'll be putting together additional cheat sheets to make sure you are signed up for the...
Laura Chappell
bottom of page