NFS
Network File System (NFS) is a network protocol that allows users to access and share files over a network.
Network Protocols Index
What is a Network Protocol?
A network protocol is a set of rules that govern the communication between devices over a computer network. It specifies how data is transmitted over a network, how devices identify and authenticate each other, the format of the data, the order in which the data is sent, how errors are handled, and how data is recovered if it is lost or corrupted during transmission.
Network protocols define the methods by which devices communicate with each other, enabling them to send and receive data, establish connections, and manage network resources.
By using predefined protocols, devices from different manufacturers and running different software can communicate with each other seamlessly. This enables networks to function reliably and efficiently, and facilitates the exchange of information between devices across the globe.
At WireX Systems we analyze over a hundred different protocols and extract thousands of different attributes and commands from protocol payloads. Here is a sample list of protocols, describing how these protocols work, what are they used for, how they were used in an attack scenario and relevant correlation to the MITRE ATT&CK® Framework as well as sample attributes that WireX Systems is analyzing, extracting, compressing and indexing from the protocol payload.
HTTP
HTTP (Hypertext Transfer Protocol) is the protocol used to transfer data between web browsers and web servers.
CIFS
CIFS, or Common Internet File System, is a network protocol that is used to provide shared access to files, printers, and other network resources.
TCP
The Transmission Control Protocol (TCP) is a foundational network protocol that is essential for the functioning of the Internet.
RTP
Real-time Transport Protocol (RTP) is a network protocol used for delivering audio and video over IP networks.
SIP
Session Initiation Protocol (SIP) is a network protocol that is used to establish, modify and terminate multimedia sessions over the network.
TELNET
TELNET is a network protocol that enables remote access to computers and other devices.
SMTP
SMTP, or Simple Mail Transfer Protocol, is a fundamental network protocol that is used to facilitate the transmission of emails.
ICMP
Internet Control Message Protocol (ICMP) is an important part of the Internet Protocol (IP) suite.
DHCP
Dynamic Host Configuration Protocol (DHCP) is a network protocol that automates the process of assigning IP addresses and other network configuration information to devices on a network.
SNMP
Simple Network Management Protocol (SNMP) is a widely used network protocol designed for managing and monitoring network devices such as routers, switches, servers, printers, and other network-attached devices.
NetBios
NETBIOS (Network Basic Input/Output System) is a legacy network protocol that enables communication between computers and devices within a local area network (LAN).
PPTP
PPTP, or Point-to-Point Tunneling Protocol, is a network protocol that enables the creation of virtual private networks (VPNs).
SSH
SSH (Secure Shell) is a cryptographic network protocol that provides secure communication channels over unsecured networks.
NAT
Network Address Translation (NAT) is a networking protocol that enables multiple devices on a private network to share a single public IP address when accessing the internet.
IPSec
IPSec, short for Internet Protocol Security, is a suite of network protocols designed to secure communications over IP networks.
DNS
The Domain Name System (DNS) is a critical network protocol that enables the internet to function smoothly by translating human-readable domain names into IP addresses, which are numerical identifiers for devices connected to the internet.
HTTPS
HTTPS (Hypertext Transfer Protocol Secure) is an extension of the HTTP protocol that provides secure communication over a network, such as the internet, by encrypting the data exchanged between a client (e.g., web browser) and a server (e.g., web server).
FTP
File Transfer Protocol (FTP) is a standard network protocol used to transfer files between a client and a server over a TCP/IP-based network, such as the internet.
UDP
User Datagram Protocol (UDP) is a transport layer protocol in the Internet Protocol (IP) suite, designed for simple and fast data transmission over a network.
TDS
TDS (Tabular Data Stream) is a network protocol used primarily for communication between Microsoft SQL Server and its clients.
SMB
SMB, (Server Message Block), is a network protocol designed to enable file and resource sharing between computers on a network.
POP3
Post Office Protocol 3 (POP3) is a widely-used application layer protocol in the Internet suite that allows email clients to retrieve emails from a remote mail server.
TFTP
Trivial File Transfer Protocol (TFTP) is a simple, lightweight file transfer protocol used primarily for transferring files over a network.
TNS
Transparent Network Substrate (TNS) is a proprietary networking protocol developed by Oracle Corporation.
RDP
Remote Desktop Protocol (RDP) is a proprietary network protocol developed by Microsoft, enabling users to remotely connect and manage another computer or device over a network connection.
IRC
Internet Relay Chat (IRC) is an application layer protocol that facilitates text-based communication in real-time over the internet.
Netflow
NetFlow is a network protocol developed by Cisco Systems for collecting and analyzing IP network traffic data.
RPC
RPC ((Remote Procedure Call) sometimes called RPCP(Remote Procedure Call Protocol)) is a communication protocol used by computer systems to enable one system to request services or functions from another system over a network.
LDAP
LDAP, or the Lightweight Directory Access Protocol, is a network protocol used for accessing and managing directory services over an Internet Protocol (IP) network.
RADIUS
RADIUS (Remote Authentication Dial-In User Service) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for users who connect to and use a network service.
VNC
VNC, or Virtual Network Computing, is a remote desktop protocol that allows users to access and control a computer's graphical desktop environment over a network connection.
ARP
Address Resolution Protocol (ARP) is a network protocol used to map an Internet Protocol (IP) address to a physical address, such as a Media Access Control (MAC) address, on a local network.
WHOIS
WHOIS is a network protocol used to query databases containing information about the registration and ownership of domain names, IP addresses, and autonomous systems.
TACACS
TACACS (Terminal Access Controller Access-Control System) is a network protocol that provides centralized authentication, authorization, and accounting (AAA) services for network devices, such as routers, switches, and firewalls.
Kerberos
Kerberos is a network authentication protocol that allows secure communication and authentication between clients and services within a distributed computing environment.
L2TP
Layer 2 Tunneling Protocol (L2TP) is a network protocol that enables the creation of virtual private networks (VPNs) by encapsulating data packets from one network to another.
IMAP
Internet Message Access Protocol (IMAP) is an application layer protocol used for accessing and managing email messages stored on a mail server.
BGP
Border Gateway Protocol (BGP) is a standardized exterior gateway protocol designed to exchange routing and reachability information between autonomous systems on the Internet.
SCADA
SCADA (Supervisory Control and Data Acquisition) is a type of industrial control system (ICS) used for monitoring, controlling, and managing industrial processes and critical infrastructure.
RIP
Routing Information Protocol (RIP) is a distance-vector routing protocol used to determine the best path for data to travel through a network.
OSPF
OSPF (Open Shortest Path First) is a widely used link-state routing protocol in IP networks. It is an interior gateway protocol (IGP) and part of the Internet Protocol suite, designed to exchange routing information within an autonomous system (AS).
Syslog
Syslog is a standardized protocol used for transmitting log messages in computer systems, particularly from network devices to a central log server. It is widely used for event logging, error messages, diagnostics, and auditing purposes.
HSRP
The Hot Standby Router Protocol (HSRP) is a Cisco-proprietary redundancy protocol for establishing fault-tolerant, default-gateway configurations on a network.
MYSQL
The MySQL protocol is a client-server protocol that facilitates communication between a MySQL client and a MySQL server. It is designed to enable the transmission of SQL queries and the reception of query results between the two parties.
UPnP
Universal Plug and Play (UPnP) is a set of networking protocols designed to enable devices to discover each other and automatically establish communication and collaboration.
PostgreSQL
The PostgreSQL protocol is the communication protocol used by PostgreSQL, an open-source relational database management system (RDBMS).
SAMR
The Server Message Block (SMB) protocol is a network file-sharing protocol that enables applications to read and write to files and to request services from server programs on a computer network.
WinReg
The Windows Registry (WinReg) protocol is a communication protocol used by the Windows operating system to access and manage the Windows Registry.
DCOM
The Distributed Component Object Model (DCOM) protocol is a Microsoft technology that extends the Component Object Model (COM) to support communication between objects across a network.