LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
Reload this Page Wireshark Question
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-22-2021, 04:19 PM   #1
mb1994
LQ Newbie
 
Registered: Dec 2020
Posts: 10

Rep: Reputation: Disabled
Wireshark Question

Good afternoon,

I was wondering if I could get some assistance in understanding the full potential of Wireshark. I am analyzing a .pcap file where there is a EITest Evil Redirect Leading to EK. I was able to locate the compromised website as well as the IP address and domain that delivered the malicious downloadable payload. I was wondering what is the best way of determining other malicious hosts or sites in which the compromised host interacted? Is there a way to determine what other websites are related to the malware attack in Wireshark? Thanks in advance!
 
Old 03-22-2021, 04:35 PM   #2
computersavvy
Senior Member
 
Registered: Aug 2016
Posts: 3,345

Rep: Reputation: 1484Reputation: 1484Reputation: 1484Reputation: 1484Reputation: 1484Reputation: 1484Reputation: 1484Reputation: 1484Reputation: 1484Reputation: 1484
All your 6 posts have been about 3 security issues. Why not post in that sub-forum where the users are more likely to be experienced with the topics.
 
Old 03-22-2021, 04:48 PM   #3
mb1994
LQ Newbie
 
Registered: Dec 2020
Posts: 10

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by computersavvy View Post
All your 6 posts have been about 3 security issues. Why not post in that sub-forum where the users are more likely to be experienced with the topics.
Will do My apologizes! I am still somewhat new to the site!
 
Old 03-22-2021, 05:05 PM   #4
boughtonp
Senior Member
 
Registered: Feb 2007
Location: UK
Distribution: Debian
Posts: 3,600

Rep: Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546Reputation: 2546
It's preferred to report your own thread and ask a moderator to move it instead of creating a second one.

https://www.linuxquestions.org/questions/linux-security-4/wireshark-question-4175692468
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
A question about Wireshark rokyo Linux - Security 5 04-03-2017 02:15 PM
Question on using Wireshark to troubleshoot vlan traffic JockVSJock Linux - Networking 6 09-30-2016 12:40 PM
Wireshark sniff msn question Sick_Boy Linux - Security 4 11-08-2007 12:12 PM
quick wireshark question nomb Linux - Security 4 10-16-2007 10:13 PM
LXer: Ethereal changes name to Wireshark LXer Syndicated Linux News 0 06-10-2006 08:03 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 01:52 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration