I completed the TShark Challenge II: Directory room on TryHackMe, which pushed my TShark skills even further through another real-world style investigation. This time, the focus was on digging into traffic to uncover evidence of suspicious directory activity. Using command-line filters and field extraction, I had to identify important details like directories being accessed, potential file transfers, and the hosts involved.
This challenge really emphasized the power of TShark for quickly uncovering hidden information buried in large packet captures. By working through the tasks, I got better at crafting precise filters, pulling out only the data I needed, and piecing together the bigger picture of what was happening on the network. It was a solid step forward in sharpening my packet analysis skills for real-world cybersecurity scenarios.
I even earned a badge for completing all the TShark Exercises:
