148 posts categorized "Oldcommguy" Feed

A Wi-Fi Router as a Witness Device! (by Daniel Arrugueta)

A Wi-Fi Router as a Witness Device

Note: attached is the full document in .pdf format and is awesome reading for forensic investigators!

Download A WiFi Router as a Witness Device Full Document!

Witnesses often are crucial elements in solving and prosecuting criminal or civil violations.  We now regularly use data that various technologies record. Digital witness devices provide a source of largely unbiased and dependable information to the investigator and prosecutor. However, many often ignore or do not even recognize commonly available electronics as potential witness devices.  One such device is the wireless router found in most homes and businesses.

As with any witness, some sort of vetting and consideration is wise. Reliability, bias, memory, physical abilities, etc., all can be factors that play roles in the use of digital witness devices and the use of their data. Whether you consider data from digital cameras, microphones, cell phones, computers, or Wi-Fi (wireless) routers, you should approach each with an open eye and determine clearly what each actually offers to your investigation. Data typically is reliable; how you interpret and present that data is key to its ultimate usefulness. Criminal radiation

Continue reading "A Wi-Fi Router as a Witness Device! (by Daniel Arrugueta)" »


Network Troubleshooting Through the OSI Model (by Melany Joy Beck)

Network Troubleshooting Through the OSI Model

When it comes to network troubleshooting, working through the Open Systems Interconnection (OSI) model is a straightforward process. With the exception of Layer 1, each layer of the OSI model relies on the next lower layer to provide services as specified. Requests drop down and are completed, as every layer interacts with the next layer, both above and below. When dealing with different layers, understanding how each delivers data and functions impacts how you will troubleshoot.

FREE!

Viavi guide to enterprise protocols poster – Get yours today. 

Viavi free osi

Layer Highlights and Functions - A complete view from Layer 1 through Layer 7!

Read on to see each layer overview and more free links below - 

 

Continue reading "Network Troubleshooting Through the OSI Model (by Melany Joy Beck)" »


LMTV LIVE | WiFi Analytics (with John Kerber, CEO of Who's On My WiFi)



YouTube Live Event Start Time : Wednesday, July 26, 2017 - 9:30 AM PST


Screen Shot 2017-07-24 at 10.38.10 AMOn this week's LMTV LIVE, John Kerber, the Technical Co-Founder of Who's On My WiFi will be on the show to discuss WiFi Analytics, privacy in the age of Analytics, and where things are headed with this technology.

Who's On My WiFi is a young, growing company, originally starting primarily in the network security space, but since the last time on the show, has made the transition to a WiFi Analytics company.

What is WiFi Analytics?

WiFi Analytics is a growing field that helps organizations make business decisions about physical locations based on the information already available on a computer network.

As an analogy, Web Analytics companies changed the view of parsing Web Server logs from being an IT Function specifically focused on either security or on website uptime, into more of a marketing or business development function focused on user behavior and increasing engagement that also aids in security or uptime.

Continue reading "LMTV LIVE | WiFi Analytics (with John Kerber, CEO of Who's On My WiFi)" »


LMTV LIVE | How to Create Scalable Visibility in your Data Center (with Chris Bihary of Garland Technology)



YouTube LIVE event start time: Wednesday, July 19, 2017, 9:30 AM PST


Garland170x200How do you scale your network infrastructure to support multiple monitoring tools - while ensuring 100% packet capture?

This is the problem we have been hearing in the last few years. Data centers (D1 & D2) and enterprise networks have many challenges and two of the big ones are providing the IT department anytime access to full-duplex traffic, while guaranteeing full packet capture. Now layer on top of that a stack of 1G legacy monitoring tools in addition to the migration to 10G/40G and 100G speeds.

Join us for to learn about the latest visibility solution from Garland Technology’s as they introduce and demonstrate their Passive Fiber Modular Chassis System, a flexible, scalable and affordable high density solution for managing up to 24 links in a 1U box at network speeds of 1G/10G/40G/100G.


Click to read other LMTV posts by contributors of LoveMyTool »


The Payoff of having a double sided capture! (by Mike Motta)

The complaint came in that it was taking from 4 to 20 minutes to transfer data.

Why is the network slow?  Is it the network?

Could it be the infamous SNAIL problem?

Snail

At first the client sent me a trace only from the client side.  The trace file showed packets out of order and some re-transmissions along with low TCP windows.  I asked the client if it was possible to get a capture from both sides, client and server and the answer was “yes” (In my world that is the best way to eliminate any magic!)  

First: I looked at the server side trace file first.  It showed the server re-transmitting over a thousand times.  (Uh Oh)   

By having both sides I was able to prove that the server did indeed send the packet but the client did not receive it. 

We can also see that they are 5 hops from each other, which means something is dropping packets. 

Next : It is time to interrogate router interfaces and firewall interfaces for discards or drops. 

Watch this Video for the problem visibility process, guiding us to the issue at https://youtu.be/WW0SjeeteK8 

Get a TAP to see every bit of your Data!

Continue reading "The Payoff of having a double sided capture! (by Mike Motta)" »