What do you think?
Rate this book
Wireshark Essentials
Get up and running with Wireshark to analyze network packets and protocols effectivelyAbout This BookTroubleshoot problems, identify security risks, and measure key application performance metrics with WiresharkGain valuable insights into the network and application protocols, and the key fields in each protocolConfigure Wireshark, and analyze networks and applications at the packet level with the help of practical examples and step-wise instructionsWho This Book Is ForThis book is aimed at IT professionals who want to develop or enhance their packet analysis skills. Basic familiarity with common network and application services terms and technologies is assumed; however, expertise in advanced networking topics or protocols is not required. Readers in any IT field can develop the analysis skills specifically needed to complement and support their respective areas of responsibility and interest.
What You Will LearnDiscover how packet analysts view networks and the role of protocols at the packet levelCapture and isolate all the right packets to perform a thorough analysis using Wireshark's extensive capture and display filtering capabilitiesUse the optimal timestamp displays, packet marking and coloring, and protocol-level settings for effective analysis of packetsSelect and configure the appropriate Wireshark features and functions for the analysis task at handTroubleshoot connectivity and functionality issues in your networkAnalyze and report the leading causes of poor application performanceAnalyze packets to detect and identify malicious traffic and security threatsLeverage the Wireshark command-line utilities for high performance or scripted analysis activitiesIn DetailThis book introduces the Wireshark network analyzer to IT professionals across multiple disciplines.
It starts off with the installation of Wireshark, before gradually taking you through your first packet capture, identifying and filtering out just the packets of interest, and saving them to a new file for later analysis. The subsequent chapters will build on this foundation by covering essential topics on the application of the right Wireshark features for analysis, network protocols essentials, troubleshooting, and analyzing performance issues. Finally, the book focuses on packet analysis for security tasks, command-line utilities, and tools that manage trace files.
Upon finishing this book, you will have successfully added strong Wireshark skills to your technical toolset and significantly increased your value as an IT professional.
What You Will LearnDiscover how packet analysts view networks and the role of protocols at the packet levelCapture and isolate all the right packets to perform a thorough analysis using Wireshark's extensive capture and display filtering capabilitiesUse the optimal timestamp displays, packet marking and coloring, and protocol-level settings for effective analysis of packetsSelect and configure the appropriate Wireshark features and functions for the analysis task at handTroubleshoot connectivity and functionality issues in your networkAnalyze and report the leading causes of poor application performanceAnalyze packets to detect and identify malicious traffic and security threatsLeverage the Wireshark command-line utilities for high performance or scripted analysis activitiesIn DetailThis book introduces the Wireshark network analyzer to IT professionals across multiple disciplines.
It starts off with the installation of Wireshark, before gradually taking you through your first packet capture, identifying and filtering out just the packets of interest, and saving them to a new file for later analysis. The subsequent chapters will build on this foundation by covering essential topics on the application of the right Wireshark features for analysis, network protocols essentials, troubleshooting, and analyzing performance issues. Finally, the book focuses on packet analysis for security tasks, command-line utilities, and tools that manage trace files.
Upon finishing this book, you will have successfully added strong Wireshark skills to your technical toolset and significantly increased your value as an IT professional.
- GenresComputer Science
304 pages, Kindle Edition
First published October 28, 2014
9 people are currently reading
21 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 3 of 3 reviews
December 1, 2014
I was provided a review copy of this book.
I think anyone learning protocol analysis would benefit from this book.
I'm a WCNA and have used Wireshark occasionally since it was Ethereal and daily for the last 5 years. I found "Wireshark Essentials" by James H. Baxter to be a reasonable introduction to Wireshark. He does a good job of explaining both how to 'operate' the program and how to 'use' the program.
I differentiate because 'using' Wireshark requires knowledge of the program, an understanding of the captured protocols, and a solid troubleshooting methodology.
What I appreciate most about Baxter's book is his introduction to troubleshooting. I've read a number of Wireshark books and I think he has done one of the better jobs of describing a solid methodology.
Baxter also covers protocol basics but those are better described in the RFCs and in books by Stevens, Comer, or Kozierok.
There are a couple of editorial quibbles but I didn't notice anything of consequence. I do think he could have provided a stronger reminder to get authorization to use Wireshark on a network you don't own.
In the end Baxter has written a useful and readable introduction to protocol analysis and Wireshark.
I think anyone learning protocol analysis would benefit from this book.
I'm a WCNA and have used Wireshark occasionally since it was Ethereal and daily for the last 5 years. I found "Wireshark Essentials" by James H. Baxter to be a reasonable introduction to Wireshark. He does a good job of explaining both how to 'operate' the program and how to 'use' the program.
I differentiate because 'using' Wireshark requires knowledge of the program, an understanding of the captured protocols, and a solid troubleshooting methodology.
What I appreciate most about Baxter's book is his introduction to troubleshooting. I've read a number of Wireshark books and I think he has done one of the better jobs of describing a solid methodology.
Baxter also covers protocol basics but those are better described in the RFCs and in books by Stevens, Comer, or Kozierok.
There are a couple of editorial quibbles but I didn't notice anything of consequence. I do think he could have provided a stronger reminder to get authorization to use Wireshark on a network you don't own.
In the end Baxter has written a useful and readable introduction to protocol analysis and Wireshark.
December 12, 2014
I’m system specialist and use Wireshark several times per week. Before I have read the book I used to find solution on youtube. Now I must say there is mostly everything what you need for your analysis. Especially great examples for each problematic are very helpful if you do something new.
The book is for anybody who starts or is middle familiar with Wireshark and wants to do the real network analysis. Wireshark Essentials with 194pgs is right choose to become network analyst.
The book is for anybody who starts or is middle familiar with Wireshark and wants to do the real network analysis. Wireshark Essentials with 194pgs is right choose to become network analyst.
January 9, 2015
Wireshark is one of the most powerful tools available to network administrators, but it can definitely seem daunting at first. This book is an excellent tool to use to learn the basics of what Wireshark is, how it works, and some tips and techniques for making it work more efficiently for you. After reading this book, you should be comfortable enough to start using Wireshark and begin to unlock the huge potential of this application.
Displaying 1 - 3 of 3 reviews