Prior to Wireshark 4, you would find the manuf file in the Wireshark program directory. The manuf file was a simple text file containing...

One of my favorite features in Wireshark is the ability to click and drag a field from the Packet List pane or Packet Details pane up...

Wireshark v4 now has the option to embed TLS secrets into a trace file within the GUI. We could do this before in editcap, but who wants...

Watch out for this "gotcha" when creating capture filters with subnet masking in CIDR format. DISPLAY FILTERS ALLOW... Display filters...

In my last blog entry, I explained how Wireshark calculates TCP Conversation Completeness based on the TCP flags and whether data is seen...

Wireshark added the TCP conversation completeness measurement to identify elements contained in captured TCP conversations. In this post,...

According to Wireshark 4's NEWS text file, "Packet list sorting has been improved." I beg to differ and would like to see this...

When Wireshark v4 was released, I received a number of emails complaining about the new layout (Packet Details side-by-side with Packet...

READY FOR SOME GEEKY FUN? Throughout my career in packet analysis, I've made some great friends with similar interests. Tony Fortunato...

As you may know, Chappell University has a trace file library on an FTP server (accessed via https://www.chappell-university.com/traces)....

Updated: September 27th, 2020 In March, thousands of IT professionals and students joined us for CORE-IT, a free...

CORE-IT is a FREE virtual conference offering training on core tools, protocols, and practices for the IT/cyber industry professionals...

See the legitimate DDoS on PG&Es site after they announced that power would be shut off to upwards of 800,000 customers in October 2019.

Packet Challenge: Look it up in the Dictionary - download the trace file and test your skills on this Packet Challenge.

Get familiar with HTTP's 301 redirection process to a secure connections. Download the sample trace file and follow along.

After a painfully slow LinkedIn launch, I grabbed the traffic and saw some definite issues in the TCP handshake processes.

Wireshark is a piece of clay. In this blog, Laura teaches you how to customize the Expert Information - an often overlooked feature.

A sexy features in Wireshark, for sure - global mapping based on MaxMind's GeoLite2 geolocation database files! Configure and use it today!

It was supposed to be a simple DNS name error trace file... but when I was suddenly redirected to a malicious URL, I went down a rabbit hole

Should you be concerned about Spurious Retransmissions in a trace file? What triggers these indications and what should you do?