Why would a network administrator use Wireshark and netwitness investigator together?
There are a few reasons why a network administrator might use Wireshark and netwitness investigator together. First, Wireshark can be used to capture packets on the network and then analyze them using netwitness investigators. This can help administrators troubleshoot problems and identify malicious activity on the network. Additionally, administrators can use netwitness investigator to create reports about the activity that has been captured by Wireshark. This can help them to better understand what is happening on their network and make decisions about how to best protect it.
Another reason why administrators might use these two tools together is that they can work together to improve security. Wireshark can be used to detect intrusions and malicious activity, so it is important for administrators to have tools that can help them to identify this activity. Administrators are also able to use netwitness investigator to create reports about network activity so they can better understand what is happening on their network and make decisions about how best to protect it.
Finally, another reason why an administrator might choose to use these two together is that Wireshark can be used to analyze packets that have been captured by netwitness investigators. This means that if the administrator has already performed some type of investigation, then he or she may be able to learn even more information using Wireshark instead of netwitness investigator. For example, imagine someone was investigating a security breach on his or her network.
He or she might use netwitness investigator to capture the packets that were involved in the breach and then use Wireshark to analyze them in more detail. This could help him or her to better understand what happened during the breach and how it was carried out.
As you can see, there are a few reasons why an administrator might choose to use Wireshark and netwitness investigators together. Each of these reasons has its own benefits, and together they can help administrators to better protect their networks from malicious activity.