Get valuable experience extracting data from network packet captures! Students will use Wireshark® to analyze network packet traces containing normal network traffic and active attacks. Detailed information will be extracted from the traces by examining packets and by using Wireshark's built-in analysis and PCAP-manipulation tools.
Prerequisites
Knowledge of the internals of networking protocols, including TCP/IP, DNS, and HTTP. Familiarity with Wireshark and the Unix/Linux command line.
The CYRIN Protocol Analysis labs will help you meet these prerequisites.
Expected Duration
3 hours, self-paced. Pause and continue at any time.
3 CPEs awarded on successful completion.
Availability
Included if you are a subscriber to any of the following training packages:
- Level 2: Attack/Defense/IR Exercises and Instructional Labs
- Level 3: Attack Scenarios, Attack/Defense/IR Exercises, and Instructional Labs
- Attack, Defense, and System Administration Exercises Package
- Cyber Defense Analyst 2
- Vulnerability Assessment Analyst 2
- Cyber Defense Forensics Analyst 1
- Law Enforcement/Counterintelligence Forensics Analyst 1
- Cyber Defense Incident Responder
- Cyber Operations NICE Specialty Area Package
- Incident Response Package
