COURSE
INTRODUCTION
The only way to master a network security domain is to touch & feel the packets passing through the network and other devices. The most popular tool to look deep inside each and every packet on a network is Wireshark. Who doesn’t want to know what happens when a packet leaves the laptop or server? How does a packet look like? Understanding networking concepts through the eyes of Wireshark will add so much depth to one’s knowledge that is unprecedented. In this Wireshark basics module, we will teach you how to get started with Wireshark, How to capture packets at laptop/desktop/server/mobile/switch/router/firewall level and understand what happens at each layer of TCP/IP and OSI layer when packets move from one device to another?
No training of Network Security is complete without having a deep understanding of each and every packet that passes through the network. You will learn how to capture packets at laptop/desktop/mobile/switch/router/firewall level and perform deep inspection of each packet. After completing this course you will be able to explain with complete confidence all the layers of TCP/IP and OSI model. This course will make your network security foundation rock solid.
- How to capture packets at various points?
- How to install and read packets in Wireshark tool?
- How to use Wireshark in CLI mode?
- How to merge multiple pcap file? How to create profiles in Wireshark?
- How to find Geolocation of IP addresses from captured packets
- Understand how popular protocols like, HTTP and FTP look under the lens of Wireshark.
- Filter usernames and passwords from captured files.
- How to find Round Trip Time, Throughput and Latency of packets between Client and Server machine?
- How to create I/O Graphs?
- How to analyze VoIP packets?
To know more about the Program Pricing, just fill the form. One of our representatives will get back to you with the requested information.
COURSE
STRUCTURE
Module 1
Wireshark Introduction
- Basic Networking Terms And Concepts
- OSI Model: What It Is, Different Layers, And Why Is It Important To Understand?
- Why to capture packets?
- Where to capture packets?
- How to capture packets?
- Tools to analyse captured packets
Labs:
How to capture packets at
- Network Level
- Desktop/Server level
Module 2
Getting Started With Wireshark. How To Set It Up, Install, Interface and capturing the packets
- Introduction to Wireshark
- When to use Wireshark
- Where to physically connect
- Wireshark Graphical User Interface
- Capturing network traffic
- Capture filters
- Display filters
- Preferences
- Mark and ignore packets
- Import and export packet captures
Labs:
- Install Wireshark
- Capture and save network traffic
- Capture filters
- Display filters.
Module 3
Introduction To Wireshark Command Line Interface And Tshark
- Wireshark Command Line Interface Overview
- Wireshark CLI First Usage Introduction
- T Shark File Output
- Tshark Timer Limits
- Tshark Splitting Output Files
- Difference Between Display And Capture Filters In CLI
- Field Separation
Labs:
- How to use Wireshark in CLI?
Module 4
Analyzing tools and troubleshooting techniques
- Name Resolution
- Configuration profiles
- Preferences
- Creating coloring rules
Labs:
- Merging capture file
- Custom profile
- Coloring rules
Module 5
Analyze and troubleshoot Layer 2, IP,TCP
- Ethernet frames
- MAC addresses
- ARP request/response procedure
- IPv4 header
- IPv4 address
- IP packet fragmentation
- ICMP messaging
- Establishing a TCP connection
- TCP header
- Port numbers
Labs:
- How to find Geo based IP address
- How to Check Throughput/Round Trip time between client and Server?
- How to find latency of website using capture file.
Module 6
Statistics and analysing http protocol
- Leveraging Wireshark statistical reports and graphs
- HTTP Packet Analysis
Labs:
- How to put I/O Graph using filters.
- Finding Credentials from captured files