Introduction to Packet Analysis - Part 8: Capturing Network Traffic with TCPDump (Part 2)

Author: Jeremy Druin Twitter: @webpwnized Thank you for watching. Please help by up voting, subscribing or even support this channel at https://www.youtube.com/user/webpwnized Description: From the ISSA-KY Network Packet Analysis Workshop, this video series introduces the basics of the OSI packet model, application packet model and common network protocols. Later videos will discuss specific protocols such as TCP, IP, UDP and HTTP. Later, packets will be captured into PCAPs which are analyzed with Wireshark and Network Miner. We continue the series on network packet analysis with capturing network packets into PCAP files with TCPDump. TCPDump is available on most versions of Linux and is preinstalled on Kali Linux. It is easy to use even for beginners and captures files in the PCAP format. The PCAP format is the standard network packet capture file format allowing the files to be opened in other tools such as Wireshark and Network Miner. A TCPDump port for Windows is also available for operating systems like Windows 10. Tools discussed in other videos are Wireshark, Network Miner, Scapy, TCPDump and Traceroute for Linux. Later videos will cover usage of some of these tools. Also, other videos on this channel discuss tools like scapy. For videos that go into depth on these tools please see videos at playlist https://www.youtube.com/playlist?list=PLZOToVAK85MqkNyx8VKPT7h9ZlxkX2krG. If you would like access to the full course including the lab exercises and walk-through, please consider taking the course at http://ellipsisinfosec.teachable.com/p/introduction-to-network-packet-analysis-and-forensics