Developer Lightening Talks

Slides:

Advertisements

Similar presentations

Configuring APACS & AAN Controllers

Advertisements

Managing Cisco IOS Software. Overview The router boot sequence Locating IOS software The configuration register Recovering Passwords Backing Up the Cisco.

DSX / Video Insight Driver Interface. Prerequisites for Video Insight DVR: 64 Bit Operating System (Windows 7 or equivalent) SQL Server 2008 R2 (Please.

1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.

Introduction To The Course Network Architecture Hervey Allen Chris Evans Phil Regnauld September 3 - 4, 2009 Santiago, Chile.

Using Eclipse. Getting Started There are three ways to create a Java project: 1:Select File > New > Project, 2 Select the arrow of the button in the upper.

Calendar Browser is a groupware used for booking all kinds of resources within an organization. Calendar Browser is installed on a file server and in a.

Linux Boot Up Process Bootstrapping –Bootstrapping is the standard term for “ starting up a computer”. During bootstrapping, the kernel is loaded into.

Chapter Apache Installation in Linux- Mandrake. Acknowledgment The following information has been obtained directly from

Security SIG: Introduction to Tripwire Chris Harwood John Ives.

27-Jun-15 Rails. What is Rails? Rails is a framework for building web applications This involves: Getting information from the user (client), using HTML.

Snippet Management The following screens demonstrate how to: 1. Access and view snippets 2. Create a local standard snippet, or a local class snippet 3.

Ch. 5 – Access Points. Overview Access Point Connection.

Hacking the Bluetooth Pairing Authentication Process Graduate Operating System Mini Project Siyuan Jiang and Haipeng Cai.

Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.

ECE 424 Embedded Systems Design Networking Connectivity Chapter 12 Ning Weng.

Module 4: Add Client Computers and Devices to the Network.

Switch Concepts and Configuration and Configuration Part II Advanced Computer Networks.

System Administration and Basic Functionality Version 4.0 – September 2007 Q-Advisor Quick Start.

Home Media Network Hard Drive Training for Update to 2.0 By Erik Collett Revised for Firmware Update.

1 Installation When this module is complete, you will be able to:  Set a static IP address for your laptop  Install the snom ONE software  Navigate.

Specview 32 Release 2.5 Enhancements

Client – Server Application Can you create a client server application: The server will be running as a service: does not have a GUI The server will run.

Guide to Linux Installation and Administration, 2e1 Chapter 10 Managing System Resources.

Photo Link Manager – Part One ► Open the Photo Link Manager form ► Understand Form Layout ► View Photos.

Cisco ASA 5505 Joseph Cicero Northeast Wisconsin Technical College.

Version How to Use Packet Tracer MarinaMD.

Overview Managing a DHCP Database Monitoring DHCP

Agilent Technologies Copyright 1999 H7211A+221 v Capture Filters, Logging, and Subnets: Module Objectives Create capture filters that control whether.

Chapter 3 & 6 Root Status and users File Ownership Every file has a owner and group –These give read,write, and execute priv’s to the owner, group, and.

Oracle Data Integrator Agents. 8-2 Understanding Agents.

Byoung-Jo CHOI Fall 2007 SW Project II Advanced Linux Programming.

PAYware Transact Terminal Interface Manager

Cscape EnvisionFX Horner APG, LLC March 7, EnvisionFX - What Does it Do? Graphical interface allows easy transfers of data to and from the PC and.

Linux Operations and Administration

How QuickTest Works with Objects USINGQTP65-STUDENT-01A.

TDAQ Experience in the BNL Liquid Argon Calorimeter Test Facility Denis Oliveira Damazio (BNL), George Redlinger (BNL).

Introduction to Matlab Module #10 Page 1 Introduction to Matlab Module #10 – Creating Graphical User Interfaces Topics 1.Overview of GUI Development using.

Hyperion Artifact Life Cycle Management Agenda  Overview  Demo  Tips & Tricks  Takeaways  Queries.

Introduction to the Mac Introduction to the Mac Using Apple’s OS X with Jim Mollé Learn iT! Computer Software Training.

Perfecto Mobile Automation

January 9, 2001 Router Plugins (Crossbow) 1 Washington WASHINGTON UNIVERSITY IN ST LOUIS Exercises.

HC+ Backup and Restore v1.00 Revision 1. Change Log Build 1 - Initial Build  Initial Release Supporting Telnet and SSH via IPv4. Build 2-3  Releases.

Windows Vista Configuration MCTS : Internet Explorer 7.0.

Instructor Materials Chapter 2: Configure a Network Operating System

Section 4 – Link Access Module (Lam) aka Data Adapters

Lab 05 Firewalls.

Chapter 2: Configure a Network Operating System

Switch Commands Exec Commands Switch#? exec Commands

Topics Graphical User Interfaces Using the tkinter Module

CCNA Routing and Switching Routing and Switching Essentials v6.0

The Architecture of oVirt Node

Introduction to the Junos Operating System

Chapter 10: Device Discovery, Management, and Maintenance

CCNA Routing and Switching Routing and Switching Essentials v6.0

Moshell Usage for RF Engineers

What is an Operating System?

Chapter 2: Configure a Network Operating System

Chapter 10: Device Discovery, Management, and Maintenance

extcap – Packet Capture

Chapter 5: Switch Configuration

Quality Center (QC) 11 Training Global IT QA Testing Team 2013

16: extcap – Packet Capture beyond libpcap/winpcap

Training Module Introduction to the TB9100/P25 CG/P25 TAG Customer Service Software (CSS) Describes Release 3.95 for Trunked TB9100 and P25 TAG Release.

Lecture9: Embedded Network Operating System: cisco IOS

Lecture9: Embedded Network Operating System: cisco IOS

How to install and manage exchange server 2010 OP Saklani.

Presentation transcript:

Developer Lightening Talks

What is this? Talking about things we like This is an open-discussion course Ask us!

Agenda 1/2 Extcap – Just a short overview Sniffing the Thingy Capture using a netlink interface

Agenda 2/2 SSL Tips / Tricks Future of Wireshark

Extcap – Just a short overview

If the packets won’t come to Wireshark Wireshark will go to the packets

Usage Scenarios Data residing on a different network environment Data not being „networky“ at all System events and logs RF environments

Pipes to the rescue dumpcap understands pipes Easy right?

What can go wrong Restart / Start / Stop Broken pipe / Broken rights Windows Configuration means restart

extcap external capture interface First presented at SharkFest US‘13 by Mike Kershaw and Mike Ryan https://sharkfestus.wireshark.org/sharkfest.13/presentations/NAP-11_Expanding- Wireshark-Beyond-Ethernet-and-Network-Interfaces_Kershaw-Ryan.pdf Part of Wireshark since 2.0 Mission statement: Utilize the pipe interface and make a nice gui for it

extcap features Start / Stop / Restart capture from interface Handle interface configuration Handle runtime control

Capture Provide a list of interfaces Provide a list of Configs Macbook:extcap rknall$ ./extcap_example.py --extcap-interfaces extcap {version=1.0}{help=http://www.wireshark.org}{display=Example extcap interface} interface {value=example1}{display=Example interface 1 for extcap} interface {value=example2}{display=Example interface 2 for extcap} Macbook:extcap rknall$ ./extcap_example.py --extcap-interface example1 --extcap-config arg {number=0}{call=--delay}{display=Time delay}{tooltip=Time delay between packages}{type=integer}{range=1,15}{default=5} arg {number=1}{call=--message}{display=Message}{tooltip=Package message content}{type=string}{required=true}{placeholder=Please enter a message here ...} ...

Interface Configuration Various options Text, Integer, Bool, IP Addresses, Passwords (hashed), Date/Time, Files, Radio, Dropdown, Multicheck (parent dependency) Check for Ranges or with RegExp Mandatory fields

Interface Configuration (2) Parameter get‘s stored Restore to defaults possible Help provided via website or local link

Interface configuration (3) Reload functionality (WS 3.0) Reload calls extcap with all filled out parameters

Control while running Create a toolbar for your interface Live control your capture and change settings Button, Text, Selector, Boolean, Help and Log

Where to go next?

extcap_example.py Python 2.7/3.x driven example Implements all configuration options Implements all control options

Locate the extcap Folder in Wireshark/Help Only global folders available Copy extcap_example.py there

Windows Users Create batch script for execution Command Execution does not evaluate shell scripts Example in the header of extcap_example.py

Adapt the example Let‘s take a look at def extcap_capture(...) Creates a pcap header Encapsulates data in pcap block

C-Based extcap Alternative: c-based extcap utility extap/extcap-base.h Handles all extcap managment stuff for you Ensures correct and working extcap arguments extcap/ssh-base.h Handles ssh connections

Sniffing a thingy

Capture using a netlink interface

Wireshark and Capture Wireshark is like the microscope. Allows you to zoom in to the bit level of a frame. Making a capture is like taking a tissue sample. You don’t use a microscope for that!

Linux capture (network) Capture is a privileged operation. There need to be privileges assigned to the process. In Linux this can be handled through Capabilities. Capabilities are added to files in the filesystem. Processes launched from the file get these Capabilities. /sbin/setcap cap_net_raw,cap_net_admin=eip dumpcap

Linux capture (USB) Capture needs an interface. Load kernel module usbmon. /sbin/modprobe usbmon Grant the user read access rights to the device. setfacl -m u:$USER:r /dev/usbmon*

Linux capture (netlink) Capture needs an interface. Load kernel module nlmon. /sbin/modprobe nlmon Create a network interface for it. ip link add type nlmon ip link set nlmon0 up

SSL Tips / Tricks

Future of Wireshark