4 min read
There’s three questions we get asked the most here at CloudShark:
That last question is very important to us, because one of the things we always want to promote is demystifying the use of packet captures to troubleshoot network and security problems. They are really are the best way, and with the right tools and knowledge they can be your first go-to.
Here’s a list of our favorite resources for getting started with packet captures.
Chris Sanders puts a lot of time and effort into making sure the wider community understands how to use packet captures for troubleshooting and security analysis.
Laura Chappell is one of the founders of Wireshark University. The textbook on Wireshark analysis is big and in-depth, but this book is a little more targeted towards beginners looking to start learning about networks through packets
Richard Bejtlich has been writing and teaching for decades on network security. His book covers the use of NSM tools, how and where to deploy them, and details about working with packet captures during incident response.
Many of the resources we introduce here base their training and examples on Wireshark. The good news is that almost anything that you learn about packet capture analysis in Wireshark applies to analysis in CloudShark, and is usually done more easily in CloudShark! We encourage you to go through some of these resources using CloudShark for your hands-on experience.
Here’s some of our go-to blogs to with examples and training resources to get familiar with capture analysis.
Those are just a short list of some of the resources we know about for diving into the world of network packets. Like we said, with the right tools using captures can be both easy and the best way to troubleshoot tough network problems. Have any more resources you want to see listed? Let us know!
Want articles like this delivered right to your inbox?
No spam, just good networking