Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Do You Use VirusTotal? Give PacketTotal a Spin! - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Do You Use VirusTotal? Give PacketTotal a Spin!

Packettotal ( http://www.packettotal.com ) is a new site that does some nifty analysis of Packet Captures for you if you're not so familiar with Wireshark or other analysis tools

Out of the gate, this site maps out connections, certificates, encryption algorithms and gives up files that are transfered in the session.  A great start (I accidentally found another app that runs their own private CA with this), we're looking forward to more great things from this site as they get on!  So far everything you can do on Packettotal you can do in Wireshark, but it's as quick and easy as can be on the PT site!

Of course - the standard rules apply - be sure that you're not uploading sensitive informaiton to cloud-based sites of this type!  If you're analyzing client data, you might need permission to upload.   They also still allow http access to their site (oops) - be sure to browse to them using https explicitly until they fix this.

 

===============
Rob VandenBrink
Compugen

Rob VandenBrink

435 Posts
ISC Handler
Thanks Rob, for this great site
Netmanzim

5 Posts Posts
Amazing !
Jay

2 Posts Posts

Sign Up for Free or Log In to start participating in the conversation!