Forensics Workshop II Setup

Here are the materials for the upcoming “Network Forensics Workshop”, Part II:

Please bring a laptop. The only tools required are Wireshark (Windows, Linux or Mac) and Network Miner, which can be installed on your laptop. If you prefer to have access to all of the tools the instructors may demonstrate, you may run the SecurityOnion virtual machine. SecurityOnion runs as a virtual machine on VMware Workstation Player 12, VMware Fusion, Virtual Box or equivalent. SecurityOnion has all the tools pre-installed.

Needed Tools:

  • Wireshark (Windows or Linux)
  • Network Miner

Needed Files:

  • (Download here)
  • (Download here)

Optional Virtual Machine:

  • Security Onion (VMware or Virtual Box or equivalent)