This book covers the basic through advanced methods of filtering on hack traffic, ICMP traffic, IP fragments, subnet traffic and more. If you want to know how to build filters to capture specific application traffic based on its signature, this is the book for you. Includes instructions for capturing 'data theft' using signatures rather than port numbers . Also includes step-by-step instructions for checking for Gnutella, Morpheus, and iMesh traffic regardless of the port the users/servers are using! This book includes step-by-step instructions for importing sample filters into EtherPeek and Sniffer. |