In an era of digital engagement and the significant boost in online transactions, it is essential for organizations, be they financial or non-financial, that measures should be taken to secure their users data and privacy. Cybersecurity as a Service (CSaaS) emerges as a valuable and pivotal solution from a small organization to a unicorn, as it offers a proactive and scalable safeguarding technology for businesses. Organizations can use ‘CSaaS’ solutions to safeguard their digital assets from threat actors and be in compliance with several privacy laws, such as HIPAA and GDPR. During my internship at the ‘Mosse cybersecurity institute, I’ve … Read more

Packet capturing and analyzing network traffic is essential for organizations. As a Cybersecurity analyst, you have to examine, investigate, and block threats and unauthorized attacks using various SIEM tools and network analyzers – one of them is Wireshark. Analyzing DNS requests of your network using Wireshark involves capturing DNS traffic and then examining the relevant packets. Capturing and analyzing appropriate packets gives you a detailed insight into the domain names being queried.  Below are the step-by-step instructions with screenshots that I’ve taken on my Windows Laptop: AO in the below guide I’ll be capturing packet traffic between my Phone and … Read more

In layman’s terms, Wireshark is a potent tool that helps cybersecurity analysts to capture and inspect network traffic in real-time.  Suppose there’s a malicious attack attempt on an organization network and the intrusion detection system (IDS) flags a suspicious event. In such a crucial event, the cybersecurity incident response team needs to locate and stop the malicious intrusion.  In such a scenario, cybersecurity analysts can leverage the Wireshark packet capture tool to capture packets related to the incident. Wireshark can help the analysts to gain insights into the nature of the attack and can also help to determine the origin, … Read more

As a cybersecurity analyst you need various tools to log activity and analyze network traffic. It is essential for cybersecurity professionals to view and analyze and view nework traffic with a granual and articulate approach – to thoroughly investigate any discrepancies and eradicate any issues and report malicious activity. Tools like Wireshark, Tcpdump, Capsa Free, Snort etc are some of the powerful network protocol analyzers which can help a cybersecurity architect or analyst to investigate an organization’s network traffic.  It is vital for cybersecurity trainees to understand the software complexities and various wireshark filters to to fine-tune their analysis and … Read more