Spooky's profile - activity

Hi Anas, I've answered a similar question about previous segment not being captured. TCP segment not capture may be no

Hi, Not really a Wireshark question but I'm going to guess you are seeing the effect of NAT. (en español) You are prob

Hi Ahmed, I can't think of a way to filter NS and NA used for DAD because these ICMPv6 packets are the exact same forma

Hi, This is how I do it but there are probably other (better?) ways. Capture all traffic when you are browsing to the

Hi, It is interesting that the tablet initiating the TCP connection is the device sending the TCP RST. It could mean t

Hi, You should be able to perform a right click on any lines in the expert information and see a "Copy" menu. The expe

Hi, You probably need elevated privileges to see the interfaces in "Raspbian". I suggest you read this article. https

Can you provide more details about your setup? How and where do you capture? If you are capturing on your own PC or lap

You need to figure out your MAC address so know that it is yours and not the CCTV device's MAC.

Hi, If you are running WS on your laptop and capturing when it is plugged in the CCTV device then you should not have a

Hi, If you are running WS on your laptop and capturing when it is plug in the CCTV device then you should not have a to

Hi Mohamad, If you need to capture all traffic going through your modem then your best bet is to capture using a TAP be

Hi Jinesh, The simulator app will use the Mac NIC (wired or wireless, you need to know when you capture) to reach the o

Hi, This is how I do it but there are probably other (better?) ways. Capture all traffic when you are browsing to the

Hi, I looked at the PCAP. It looks like something is wrong on the client (browser) side because we see it sends TLS 1.

Hi, You seem to be running a newer version of Wireshark but looking at older I/O Graph references. Running version 2.6

Hi, This will be difficult because www.7-zip.org is using HTTPS. If the file was downloaded over HTTP then you could s

Hi, TCP segment not capture may be normal if they are seen at the beginning of a capture or at least if you started cap

Hi, If you are playing online then most of your gaming traffic will be UDP packets. So filtering "BadTCP" will probably

Hi Darius, You can probably use Wireshark manually or a shell scripting language available on your platform to call tsh

Hi, A DNS amplification attack usually means that you are seeing "a lot" of DNS responses for queries that did not orig

+1 on the certificates and encryption setup as possible culprit

Hi Betty, If you only need a short list then there is Talos intelligence from Cisco. https://www.talosintelligence.com

Hi, I'm not sure what "N/A bps" is here but if you are going to Statistics then Conversations you can filter any of the

Hi, You are correct. The Time To Live (TTL) field in the Internet Protocol (IP) headers will limit how many hops a pack

Hi, My understanding is that you have a load balancer (LB) with a virtual IP (VIP) listening on port 8443 for HTTPS tra

Hi Bonnie, It is hard to tell without having the actual PCAP in front of me. The remaining parts may be the original i

Hi Bonnie, It is hard to tell without having the actual PCAP in front of me. The remaining parts may be the original i

Hi, First keep in mind that there are a lot of different video formats out there and that Wireshark may or may not be a

Hi, I'm a bit confused by the explanation so let me state my understanding: You are on a host on the same network as t

Hi, You may be able to capture some traffic by using a TAP on the link going from your router to your "Internet.” (To y

Hi, You may be able to capture some traffic by using a TAP (https://www.instructables.com/id/Make-a-Passive-Network-Tap

Hi, There should always be a 3-way handshake when starting a new TCP connection. (Corner cases exist but are very rar

Did you try capturing on the egress and ingress interface of the firewall? Is it possible the firewall no longer has th

Hi Each [TCP ACKed unseen segment] means that you captured a TCP ACK packet but did not capture the actual data that w