Good sample packet capture sites?

Paul Boz

I have been digging deeper into packet analysis (blatantly awful pun, I know) but find it generally difficult to get unique traffic to look at. I have been on over 150 different networks over the last two years but in all honesty if you're sitting on a generic bank or credit union switched network you're not going to see very much of anything that's unique. To liven up my studies I started looking for websites which provide sample packet captures for various protocols and traffic types. I discovered the Sample Captures repository at the Wireshark Wiki which has proven to be quite the jackpot. They've got a ton of content.

SampleCaptures - The Wireshark Wiki

I am going to do some more research tomorrow to find some additional repositories, but its late and I had a long day of traveling so it will have to wait. In the mean time, if any of you know of some good websites which provide sample packet captures please share them

docrice

OpenPacket is one: https://www.openpacket.org/

dynamik

Honeynet Project Challenges | The Honeynet Project

I think I have another one on my work laptop that I'll post later. This type of stuff is 99% of what I'm planning on doing with the blog. I think after I get the CISA and a college class out of the way in about a month, I'm going to start putting my time into that.

dynamik

This was the other: Network Forensics Puzzle Contest

Paul Boz

That's where I'm trying to go with the blog as well. I figure packet analysis will be such a huge portion of the GSE that it would be foolish not to prioritize it.

JDMurray

Capture The Flag contests often publish their packet captures. Google for defcon ctf packet captures and you should come up with some interesting stuff.

Paul Boz

JDMurray wrote: »

Capture The Flag contests often publish their packet captures. Google for defcon ctf packet captures and you should come up with some interesting stuff.

Good call, thanks JD.