Wireshark · Wireshark-users: Re: [Wireshark-users] Need filters

Wireshark-users: Re: [Wireshark-users] Need filters

From: "David H. Lipman" <DLipman@xxxxxxxxxxx>

Date: Wed, 23 Jun 2010 06:49:29 -0400

From: "bart sikkes" <b.sikkes@xxxxxxxxx>

>> Thanx!

>> I passed on your comment.  Maybe what I should do next is point him to this News
>> group.

| and what if the malware uses the port(s) you are going to exclude?
| specially with malware i would be careful with what you call noise,
| that noise can be used to hide the malware.

| bart

Good point but, after a while of examining malware communications you get a good feel for 
what they don't do.

-- 
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

References:
- [Wireshark-users] Need filters
  - From: David H. Lipman
- Re: [Wireshark-users] Need filters
  - From: Jaap Keuter
- Re: [Wireshark-users] Need filters
  - From: David H. Lipman
- Re: [Wireshark-users] Need filters
  - From: Jaap Keuter
- Re: [Wireshark-users] Need filters
  - From: David H. Lipman
- Re: [Wireshark-users] Need filters
  - From: Guy Harris
- Re: [Wireshark-users] Need filters
  - From: David H. Lipman
- Re: [Wireshark-users] Need filters
  - From: Guy Harris
- Re: [Wireshark-users] Need filters
  - From: David H. Lipman
- Re: [Wireshark-users] Need filters
  - From: bart sikkes

Prev by Date: Re: [Wireshark-users] Need filters
Next by Date: Re: [Wireshark-users] FW: RTP Statistics -> line saying you can get the delay, jitter, bandwidth, etc.
Previous by thread: Re: [Wireshark-users] Need filters
Next by thread: Re: [Wireshark-users] Need filters
Index(es):
- Date
- Thread