Practical audit advice you can use today.
# 13 : Network Sniffing: What, Why and How
Using a network sniffer like Wireshark is pretty easy to do, but network and security engineers only use a sniffer when they're troubleshooting or investigating. Are there any proactive tests that should be done on a network using a sniffer? Yes!
In this episode we take a look at a few basics about Wireshark and then jump right into a handy process that I often use when working with businesses of any size. It's not unusual to discover that unusual network protocols have crept in over the months and years, or to find that there are potentially serious layer 2 configuration issues creating security holes.
© 2011, David Hoelzer & EnclaveForensics