PP062: Hunting for Host Security and Performance Issues with Stratoshark

Stratoshark is a new tool from the Wireshark Foundation that analyzes system calls on a host. Network, security, and application teams can use Stratoshark to diagnose performance issues and investigate behavior that may indicate malware or other compromises of the host. On today's Packet Protector we talk with Gerald Combs of the Wireshark Foundation about why you'd want to analyze system calls, how those calls are captured and analyzed, what operating systems Stratoshark works with, how the UI mirrors Wireshark to provide a familiar environment for users, and more. Gerald Combs - https://www.linkedin.com/in/geraldcombs/ Stratoshark - https://stratoshark.org/ Introduction to System Call - GeeksforGeeks - https://www.geeksforgeeks.org/introduction-of-system-call/ What is Falco - Falco - https://falco.org/about/ Packet Protector is part of the Packet Pushers network. Visit our website to find more great networking and technology podcasts, along with tutorial videos, the Human Infrastructure newsletter, and loads more resources for building your IT career. https://packetpushers.net