Advanced Network Traffic Analysis with Wireshark Training (NTA02)

"I was blown away by the trainer's knowledge of exploits, traffic analysis, and incident response skills. Awesome course!"
Advanced Network Traffic Analysis with Wireshark Training, Oct 30 - Nov 1, 2017
1,495.00
Dates:
Delivery Option:
Add To Cart

This packet analysis course takes the concepts and skills learned in our Network Traffic Analysis with Wireshark (NTA01) course and teaches advanced features of Wireshark that will allow students to optimize and streamline their analysis of packet captures.  The course places emphasis on detecting and analyzing various stages of network attacks by both automated tools and manual hacking.  Attendees will apply the advanced knowledge taught in this course to investigate more difficult, yet realistic, intrusion scenarios.  The course will also cover using advanced Wireshark features to investigate TCP network problems.

Who Should Attend

Do you...

  • Perform malware analysis
  • Perform penetration testing
  • Care if someone is a Man-In-The-Middle (MITM), sniffing your traffic at Starbucks, the hotel, etc.
  • Troubleshoot network applications or network latency
  • Track down infected users and top bandwidth consumers
  • Perform incident response
  • Want to know if you are infected with malware

Additionally, if you attended NTA01 or you already have basic Wireshark skills, and you would like to leverage Wireshark’s advanced features to quickly find the root cause of network problems…

If any of the above apply to you, you should attend the course.

Prerequisites

General knowledge of TCP/IP, networking, and the OSI Model. Exposure to networking protocols and technologies such as DNS, DHCP, ICMP, FTP, HTTP, SMTP, and ARP.  Also, students should have either taken NTA01 or have extensive Wireshark and networking experience.

OVERVIEW

  • Quick Review of NTA01 Concepts and Wireshark Features
  • Network Analysis
  • Capturing Traffic
  • Creating and Applying Capture Filters
  • Defining Global and Personal Preferences
  • Time Values and Summaries
  • Basic Trace File Statistics

Topics Covered

  • Network Analysis
  • Capturing Traffic
  • Creating and Applying Capture and Display Filters
  • Defining Global and Personal Preferences
  • Using Time Values and Summaries
  • Following Streams and Reassembling Data
  • Creating and Using Custom Wireshark Profiles
  • Annotating, Saving, Exporting and Printing Packets
  • Using Wireshark’s Expert System
  • Analyzing Protocols (TCP, HTTP, FTP)
  • Detecting Scanning and Discovery Processes
  • Analyzing Suspect Traffic
  • Using Wireshark’s Command Line Tools

SOFTWARE AND TOOLS USED

Layer 2 Man-In-The-Middle (MITM) Attack Packet Capture

  • Wireshark
  • Nmap

Course Duration

Gained a better understanding of Wireshark by using many examples.
— Systems Engineer, The Boeing Company

3 days

Continuing Education Credits

21

Locations

network-traffic-analysis-wireshark-st-louis.jpg
 

Our public courses are offered less than 20 minutes from downtown St. Louis at our partner, TechGuard Security's office, located outside of Scott Air Force Base.

703 Seibert Rd, Suite 2
Scott Air Force Base, Illinois 62225

We also offer private onsite courses, at your location.  We love to travel and will gladly send a trainer to your location. Please Contact Us for more information.

FORMAT

Live, Instructor-Led Training with a dynamic trainer that is a cybersecurity professional. Instructors have real-world experience with the material covered in the course.

Schedule

  • October 30 - November 1 (M-W), 8:30am - 4:30pm, 2017
  • March 26-28 (M-W), 8:30am - 4:30pm, 2018

Register

Advanced Network Traffic Analysis with Wireshark Training, Oct 30 - Nov 1, 2017
1,495.00
Dates:
Delivery Option:
Add To Cart