BSidesSF has ended
Back To Schedule
Monday, April 20 • 10:00am - 12:00pm
Network Forensics Fun: Packet Pillaging Done Right!

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

In this talk, I will walk attendees through how Bechtel’s “Team DOFIR” took 1st place in LMG Security’s Network Forensics Puzzle Contest (NFPC) at DefCon 22. Each year, LMG holds an awesome contest, and we are proud to show the tech that we used to complete last year’s challenge.

To solve the sucker, we used tools such as Wireshark, tshark, tcpflow, bash, perl (regex one-liners baby!), Python (w/various modules), and others. I’ll show how we put together some scripts and commands in order to streamline our methodology. My goal: Show off some cool network forensics tech and garner interest for this year’s NFPC. We want some top-notch competition, so check out what we have to offer and be sure to get your game on this year!

Register for this workshop:  https://www.eventbrite.com/e/bsidessf-network-forensics-fun-packet-pillaging-done-right-son-tickets-16391442245
Prerequisites: Coming Soon 

avatar for Ryan J Chapman

Ryan J Chapman

Senior IR Analyst, Bechtel Corporation
Ryan Chapman works as a Senior Incident Response analyst. Prior to security, Ryan worked as a technical trainer. Ryan enjoys malware analysis, host/network-based forensics, and… just about everything else that has to do with blue team efforts. Outside of work, Ryan spends time with... Read More →

Monday April 20, 2015 10:00am - 12:00pm PDT

Attendees (1)