.

Author: georgemos940

docs/.obsidian/workspace.json

@@ -27,12 +27,12 @@
             "state": {
               "type": "markdown",
               "state": {
-                "file": "tech briefs/CTI/yara-rules.md",
+                "file": "tech briefs/network/networkminer.md",
                 "mode": "source",
                 "source": false
               },
               "icon": "lucide-file",
-              "title": "yara-rules"
+              "title": "networkminer"
             }
           }
         ],
@@ -186,10 +186,10 @@
   },
   "active": "f346128f88047c31",
   "lastOpenFiles": [
+    "tech briefs/CTI/yara-rules.md",
     "tech briefs/network/netminer.md",
     "tech briefs/network/networkminer.md",
     "assets/img29.png",
-    "tech briefs/CTI/yara-rules.md",
     "soc/links.md",
     "tech briefs/network/snort.md",
     "assets/img28.png",

docs/tech briefs/network/networkminer.md

@@ -1,6 +1,6 @@
 
 # NetworkMiner is an open-source traffic sniffer, PCAP handler and protocol analyser. Developed and still maintained by Netresec.
-# NetworkMiner: fast, passive network forensics without touching the wire
+
 
 NetworkMiner is a Network Forensic Analysis Tool (NFAT) designed for passive traffic analysis. It runs natively on Windows and also works on Linux, macOS, and FreeBSD. Rather than injecting packets or altering traffic, it listens or parses captures to reconstruct a clear picture of who talked to whom, over which protocols and ports, and what data changed hands. This makes it well suited for incident response scenarios where you want visibility without operational risk.