Wire shark

WireShark

Wireshark (previously known as Ethereal) is a open source network protocol analyzer that runs on both Unix and Windows.
Wireshark is used to capture or to examine data live on a network .

Features:

Rrich display filter language
Ability to view the reconstructed stream of a TCP session
See network data and packages live.
Capture network traffic and save to a file
supports hundreds of protocols and media types.
A tcpdump-like console version named tethereal

Leave a Reply Cancel reply

CVE-2019-16928: Exploiting an Exim Vulnerability via EHLO Strings October 10, 2019
In September, security researchers discovered the existence of CVE-2019-16928, a vulnerability involving the mail transfer agent Exim. Exim accounts for over 50% of publicly reachable mail servers on the internet. What makes the bug particularly noteworthy is that threat actors could exploit it to perform denial of service (DoS) or possibly even remote code execution […]
FIN6 Compromised E-commerce Platform via Magecart to Inject Credit Card Skimmers Into Thousands of Online Shops October 10, 2019
We discovered that the online credit card skimming attack known as Magecart or E-Skimming was actively operating on 3,126 online shops. The post FIN6 Compromised E-commerce Platform via Magecart to Inject Credit Card Skimmers Into Thousands of Online Shops appeared first on .
Short October Patch Tuesday Includes Remote Desktop Client, Browser, and Authentication Patches October 9, 2019
October’s Patch Tuesday is relatively modest, with Microsoft releasing a total of 59 patches. However, this shorter list still warrants attention. Nine of the 59 were still identified as Critical, while the remaining 50 were labeled Important. Most of the critical bulletins were for various Internet Explorer and Microsoft Edge vulnerabilities, with one covering a […]
New Fileless Botnet Novter Distributed by KovCoreG Malvertising Campaign October 1, 2019
We found a new modular fileless botnet malware, which we named “Novter,” (also reported and known as “Nodersok” and “Divergent”) that the KovCoreG campaign has been distributing since March. We’ve been actively monitoring this threat since its emergence and early development, and saw it being frequently updated. KovCoreG, active since 2011, is a long-running campaign […]
Gambling Apps Sneak into Top 100: How Hundreds of Fake Apps Spread on iOS App Store and Google Play September 26, 2019
We found hundreds of the fake apps on iOS App Store and Google Play, with descriptions that are inconsistent with their content. While the apps’ descriptions varied, they share the same suspicious behavior: They could transform into gambling apps that may get banned for violating local government regulations and app store policies. The post Gambling […]
Mac Malware that Spoofs Trading App Steals User Information, Uploads it to Website September 20, 2019
We recently found and analyzed a malicious malware variant that disguised itself as a legitimate Mac-based trading app called Stockfolio. We found two variants of the malware family. The first one contains a pair of shell scripts and connects to a remote site to decrypt its encrypted codes while the second sample, despite using a simpler […]
Fileless Cryptocurrency-Miner GhostMiner Weaponizes WMI Objects, Kills Other Cryptocurrency-Mining Payloads September 19, 2019
By Carl Maverick Pascual (Threats Analyst) Cybercriminals continue to use cryptocurrency-mining malware to abuse computing resources for profit. As early as 2017, we have also observed how they have applied fileless techniques to make detection and monitoring more difficult. On August 2, we observed a fileless cryptocurrency-mining malware, dubbed GhostMiner, that weaponizes Windows management instrumentation... […]
Magecart Skimming Attack Targets Mobile Users of Hotel Chain Booking Websites September 18, 2019
We discovered a series of incidents where the credit card skimming attack Magecart was used to hit the booking websites of chain-brand hotels — the second time we’ve seen a Magecart threat actor directly hit ecommerce service providers instead of going for individual stores or third-party supply chains. The post Magecart Skimming Attack Targets Mobile […]
When PSD2 Opens More Doors: The Risks of Open Banking September 17, 2019
We looked into the security implications of the changing banking paradigm with PSD2 in place. Our research highlights the current and new risks that the financial industry will have to defend against, and predict how cybercriminals will abuse and attack Open Banking. The post When PSD2 Opens More Doors: The Risks of Open Banking appeared […]
Skidmap Linux Malware Uses Rootkit Capabilities to Hide Cryptocurrency-Mining Payload September 16, 2019
Skidmap, a Linux malware that we recently stumbled upon, demonstrates the increasing complexity of recent cryptocurrency-mining threats. This malware is notable because of the way it loads malicious kernel modules to keep its cryptocurrency mining operations under the radar. These kernel-mode rootkits are not only more difficult to detect compared to its user-mode counterparts — […]