User Tools
offline:defcon26ctf
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
offline:defcon26ctf [2018/11/12 17:29] veera [Pivot to packets from anywhere] |
offline:defcon26ctf [2018/11/12 17:30] (current) veera [Port connections over time] |
||
|---|---|---|---|
| Line 133: | Line 133: | ||
| - | {{:offline:dc26-8.png?600|}} | + | {{:offline:dc26-8.png?800|}} |
| Line 140: | Line 140: | ||
| The last one here is quite interesting. Go to Retro Counters > Select the entire Time interval and then select "Apps". We find that CTF contestants attacking different ports on different days. Hmm, maybe something to look deeper into. | The last one here is quite interesting. Go to Retro Counters > Select the entire Time interval and then select "Apps". We find that CTF contestants attacking different ports on different days. Hmm, maybe something to look deeper into. | ||
| - | {{:offline:dc26-9.png?600|}} | + | {{:offline:dc26-9.png?800|}} |
| + | |||
| + | ===== Conclusion===== | ||
| Hope network analysis enthusiasts find this useful. The docker image bundles a [[https://trisul.org|Free License of Trisul]]. PCAP dumps upto 3 days in time can be imported. | Hope network analysis enthusiasts find this useful. The docker image bundles a [[https://trisul.org|Free License of Trisul]]. PCAP dumps upto 3 days in time can be imported. | ||
offline/defcon26ctf.1542043761.txt.gz · Last modified: 2018/11/12 17:29 by veera
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
