Extracting ZIP files from PCAP with Wireshhark & NetworkMiner, plus analysis with CyberChef
Extracting files from network traffic is a common task. However, it isn't always as straight-forward as you may hope. In this video, we'll look at extracting a ZIP file from a PCAP. The ZIP file was a means of data exfiltration from some malware. We'll discuss how to extract the ZIP in Wireshark and NetworkMiner. We'll also discuss using CyberChef to convert the raw bytes from the network traffic, unzip the file and view the contents.
Cybersecurity, reverse engineering, malware analysis and ethical hacking content!
🎓 Courses on Pluralsight 👉🏻 https://www.pluralsight.com/authors/j...
🌶️ YouTube 👉🏻 Like, Comment & Subscribe!
🙏🏻 Support my work 👉🏻 / joshstroschein
🌎 Follow me 👉🏻 / jstrosch , / joshstroschein
⚙️ Tinker with me on Github 👉🏻 https://github.com/jstrosch
Watch video Extracting ZIP files from PCAP with Wireshhark & NetworkMiner, plus analysis with CyberChef online without registration, duration hours minute second in high quality. This video was added by user Dr Josh Stroschein - The Cyber Yeti 13 July 2021, don't forget to share it with your friends and acquaintances, it has been viewed on our site 11,55 once and liked it lik people.