When you have malware infect your network, does Wireshark have any ways of detecting or telling you there are packets transmitting it? I am still learning how WireShark works and all it's features. :) Thanks, Eric asked 26 Jul '12, 14:21  TechnoLion |
One Answer:
Wireshark is a packet analysis tool and as such will display all captured packets, but does nothing to specifically highlight malware packets. An IDS such as Snort is the tool for that sort of task. answered 26 Jul '12, 14:24  grahamb ♦ |
