Hot Topics

Netresec

RawCap

RawCap Redux

| | 127.0.0.1, ethernet, localhost, loopback, Mobile, named pipe, Netresec, pcap, RawCap, sniffer, stdout, wifi, Wireshark, WWAN
A new version of RawCap has been released today. This portable little sniffer now supports writing PCAP data to stdout and named pipes as an alternative to saving the captured packets to ...
NETRESEC Network Security Blog
PacketCache logo

Remote Packet Dumps from PacketCache

| | free, Invoke-Command, Invoke-LiveResponse, Netresec, PacketCache, pcap, PowerForensics, powershell, PSRemoting, Remoting, TrustedHosts, Windows, WinRM
This blog post describes how to dump a packet capture (pcap file) on a remote computer, which runs the PacketCache service, and retrieve that pcap file using only PowerShell. PacketCache is a ...
NETRESEC Network Security Blog
yaay

NetworkMiner 2.3.2 Released!

| | CASE, crt.sh, email, json, Netresec, NetworkMiner, RTP, SecurityTrails, SIP, TEMP, VoIP
NetworkMiner 2.3.2 was released this morning, and there was much rejoicing! Image: U.S. Navy photo by Stuart Phillips (source) This new release primarily fixes bugs related to extraction of emails and VoIP ...
NETRESEC Network Security Blog
SNMP Community Strings in NetworkMiner's Credential tab

NetworkMiner 2.3 Released!

| | A-LAW, ALAW, audio, Community strings, extract, G.711, G711, Hybrid Analysis, Netresec, Network Forensics, NetworkMiner, OSINT, pcap, RTP, SIP, smtp, SNMP, u-lAW, uLAW, VoIP, WAV, μ-law
The free and open source network forensics tool NetworkMiner now comes with improved extraction of files and metadata from several protocols as well as a few GUI updates. But the biggest improvements ...
NETRESEC Network Security Blog
Facebook

Examining Malware Redirects with NetworkMiner Professional

| | Browsers, CVE-2012-0507, CVE-2014-0569, Malware, malware_traffic, Meadgive, Netresec, NetworkMiner, nsm, pcap, Professional, redirect chain, security bloggers network, Tutorial, video, videotutorial
This network forensics video tutorial covers analysis of a malware redirect chain, where a PC is infected through the RIG Exploit Kit. A PCAP file, from Brad Duncan's malware-traffic-analysis.net website, is opened ...
NETRESEC Network Security Blog