CloudShark Appliance

From the shark's mouth

Wednesday, Apr 9, 2014

Packet Capture of Heartbleed in Action

As many are aware (as it’s now become national news), a vulnerability was recently discovered in OpenSSL dubbed Heartbleed. The attack centers around the implementation of the Heartbeat extension in OpenSSL which causes a server to return the contents of memory that should be protected. This blogpost by Troy Hunt describes the vulnerability in detail: Everything you need to know about the Heartbleed SSL bug. Being packet geeks, naturally we wanted to get a capture of the Heartbleed attack in action.

Read the whole entry »


Tuesday, Apr 8, 2014

CloudShark Statement on OpenSSL Heartbleed Vulnerability

Hello CloudShark fans! As you may have heard, a serious vulnerability in OpenSSL was recently uncovered. OpenSSL is a popular open-source cryptography platform used around the world. Known popularly as the Heartbleed Bug, this new vulnerability impacts a large number of servers and services and has the ability to expose a wide range of sensitive system information to nefarious individuals. CloudShark runs on CentOS or RedHat Enterprise Linux (RHEL) 6. Recent versions of these distributions shipped with a version of OpenSSL containing the Heartbleed Bug.

Read the whole entry »


Thursday, Apr 3, 2014

SSL Key Management with CloudShark

This month we thought we’d revisit one of CloudShark’s most unique features: SSL stream viewing and rsa key management. What do you do when you have certificates that you need to distribute to your team to look at encrypted data? How do you troubleshoot encrypted network traffic without having to give users access to your keys on their local machines? CloudShark contains a unique key management system in addition to its packet capture repository.

Read the whole entry »


Thursday, Mar 27, 2014

Best practices for creating a packet capture network

CloudShark’s three key features - organizing, analyzing, and collaborating - all have their own ways of making packet capture analysis easier. In particular, organizing captures in a repository that can be tagged, sorted, and tracked can be made even more potent when you use it to centralize captures automatically from a variety of sources. Here’s three things you can do to build a packet capture network that pulls in captures from multiple locations: Building remote packet capture The CloudShark API upload function lets users push files to CloudShark using nearly any tool.

Read the whole entry »


Thursday, Mar 20, 2014

Capturing packets on android

One advantage of Android over iOS for those of us in the packet industry is the ability to access the network interfaces. The popular Kismet Android PCAP app lets you capture on a USB wireless adapter using an Android device. But did you know that you can also capture directly on Android’s wireless interface? Paired with Kismet’s CloudShark Uploader for Android and you can actually capture, upload, view, and analyze all from your mobile android device.

Read the whole entry »


Categories

Popular Tags

Older Entries

About CloudShark Appliance

CloudShark Appliance is made by QA Cafe, a technology company based in Portsmouth, NH. Our passion for packet captures has grown out of our other product CDRouter.

Get in touch via our Contact us page or by following us on your favorite service: