Technical requirements

To perform the exercises covered in this chapter, you will require the following:

• A laptop/desktop computer with an i5/i7 processor or any other equivalent AMD processor with at least 8 GB RAM and around 100 GB of free space.
• VMware Player/VirtualBox installation with Kali OS installed. You can download it from https://www.offensive-security.com/kali-linux-vm-vmware-virtualbox-image-download/.
• Installing Wireshark on Windows: https://www.wireshark.org/docs/wsug_html_chunked/ChBuildInstallWinInstall.html.
• Netcat From Kali Linux (already installed).
• Download NetworkMiner from https://www.netresec.com/?page=Networkminer.
• The PCAP files for this chapter, downloaded from https://github.com/nipunjaswal/networkforensics/tree/master/Ch1.

Every investigation requires a precise methodology. We will discuss the popular network forensics methodology used widely across the industry in the next section.