Training Testimonials
Lisa, Information Security Manager, The Walt Disney Company

"Very knowledgeable and ensured that he was teaching at a pace comfortable for everyone since the team is at different skill levels. The instructor wanted to ensure everyone understood the material so that everyone would succeed. It's great when you have an instructor who wants to see the success of their students." - Lisa, Information Security Manager, The Walt Disney Company

Michael, CND Analyst

"I was extremely impressed with the instructors understanding of the course material. The instructor was able to put himself in the position of those he was teaching and plan and teach based upon the needs of the organization." - Michael, CND Analyst

Shelly, IA Manager, LA County

"The instructor was very knowledgeable in the field and topics he was teaching. He was able to take complex topics and convey the topics to individuals who were not familiar with any of the topics." - Shelly, IA Manager, LA County

Brian, SAIC Cyber Security Engineer

"I've taken many cyber security boot camps in the past. This CEH course was by far the best boot camp I've taken. The instructor's penetration testing experience and stories were extremely entertaining and valuable. Awesome experience! Highly recommend." - Brian, SAIC Cyber Security Engineer

Jenn, IT Analyst, Dell

"Awesome instructor. I can't say enough great things about him... Besides I would like to be in another one of his courses." - Jenn, IT Analyst, Dell

Steve, DoD Information Security Manager

"The instructor was extremely knowledgeable and crafted the exercises and discussions so we truly learned the material. I have a new appreciation for how systems are exploited." - Steve, DoD Information Security Manager

IS Auditor, KPMG

"The instructor was stupendous. Very knowledgeable about the topics and very open to any and all questions. Would ask multiple times during labs to see if anyone needed helped as well as walked around to assist in lab procedures." - IS Auditor, KPMG

Tom, Ameren IT Security Analyst

"The instructor was very knowledgeable and knew how to balance the load between the material and student engagement. She engaged the audience through personal experience examples and gain the audience's trust fast by proving himself as the subject matter expert." - Tom, Ameren IT Security Analyst

Bob, USAF Cyber Lead

"Knew the material inside-out. He did a great job of balancing intense focus on often painfully dry topics with humor and/or brief side topics. The result was a great learning environment that was intense and focused without being mentally exhausting." - Bob, USAF Cyber Lead

John, United States Air Force CPT

"The trainer did an amazing job teaching this class. His experience really helped me understand the concepts and how to apply in the real world. The training provided a very comprehensive framework for conducting pentesting and vulnerability assessments. Trainer was articulate, knowledgeable, and made this class engaging and enjoyable. Fantastic!" - John, United States Air Force CPT

Network Traffic Analysis with Wireshark Training (NTA01)

Highlights:

  • 70% Hands-On Training, geared to give you experience

  • Exciting Capture-the-Flag challenges, based on realistic packet captures

  • Focus on methodology to remove the noise and analyze pertinent traffic

  • Expert Trainers with Real-World Experience

  • Available Live Online or Live In-Person

This packet analysis course focuses on capturing, filtering, and analyzing network traffic to identify security vulnerabilities, track down network intrusions, troubleshoot network issues, and perform network forensics. The course includes real-world, hands-on scenarios featuring packet captures from network attacks and forensics investigations. Attendees will learn how to reconstruct network intrusions and extract information, such as credentials, images, malware, and Indicators of Compromise (IOCs) from packet capture files. Attendees will also learn how to piece together and extract network evidence and tie the evidence to a suspect. Wireshark is the primary tool used throughout this course, but other tools and techniques are covered as well.

Who Should Attend

Do you...

Network Traffic Analysis with Wireshark Training
1,495.00
Dates:
Quantity:
Add To Cart

  • Perform malware analysis

  • Perform penetration testing

  • Care if someone is a Man-In-The-Middle (MITM), sniffing your traffic at Starbucks, the hotel, etc.

  • Troubleshoot network applications or network latency

  • Track down infected users and top bandwidth consumers

  • Perform incident response

  • Want to know if you are infected with malware

If any of the above apply to you, you should attend the course.

Prerequisites

General knowledge of TCP/IP, networking, and the OSI Model. Exposure to networking protocols and technologies such as DNS, DHCP, ICMP, FTP, HTTP, SMTP, and ARP.

OVERVIEW

  • Network and Traffic Analysis Basics

  • Wireshark Overview and Use

  • Working with Captured Packets – Lower-Level Protocols

  • Working with Captured Packets – Higher-Level Protocols

  • Basic Real World Scenarios

  • Protocol Dissection

Topics Covered

  • TCP Flags

  • Wireshark

  • IPv4

  • IPv6

  • ARP

  • DHCP

  • ICMP

  • DNS

  • SMTP

  • FTP

  • TFTP

  • HTTP

  • HTTPS

  • Wireshark Filtering

  • Wireshark Colorization

  • Wireshark Statistics

  • Trace File Formats

  • Network Miner

  • Exporting Objects

  • Packet Capture Data Extraction

  • Base64

  • GeoIP

  • Social Media

  • Browser Credentials

  • HTTP Methods

  • HTTP User-Agents

  • SSL/TLS

  • Network and Packet Analysis

  • OSI Model

  • Sniffing Techniques

  • Packet Analyzers

  • Clear Text Protocols

  • Man-In-The-Middle (MITM)

  • Unicast Traffic

  • Broadcast Traffic

  • Multicast Traffic

  • TCP

  • UDP

  • Ports

  • Control Channels

  • Data Channels

  • Covert Channels

  • Wireshark Searches

  • Wireshark Streams

  • Wireshark Profiles

  • Capture Filtering

  • Display Filtering

  • Encryption

  • Encoding / Decoding

  • Network Traffic Analysis Methodology

  • Protocol Dissection

  • HTTP Cookies

  • Protocol Decoding

SOFTWARE AND TOOLS USED

Layer 2 Man-In-The-Middle (MITM) Attack Packet Capture

Layer 2 Man-In-The-Middle (MITM) Attack Packet Capture

Course Duration

3 days

Continuing Education Credits

21

Locations

Wireshark training located in O'Fallon, Illinois, close to Scott Air Force Base and St. Louis

Wireshark training located in O'Fallon, Illinois, close to Scott Air Force Base and St. Louis

Our Network Traffic Analysis with Wireshark course is offered less than 15 minutes from downtown St. Louis at our O'Fallon, Illinois training facility, located at:

7 Eagle Center, O'Fallon, IL 62269

 
Gained a better understanding of Wireshark by using many examples.
— Systems Engineer, The Boeing Company

We also offer private onsite courses, at your location.  We love to travel and will gladly send a trainer to your location. Please Contact Us for more information.

FORMAT

Live, Instructor-Led Training with a dynamic trainer that is a cybersecurity professional. Instructors have real-world experience with the material covered in the course.

Schedule

  • March 11-13 (M-W), 8:30am - 4:30pm, 2019

  • May 28-30 (T-Th), 8:30am - 4:30pm, 2019

Register

Network Traffic Analysis with Wireshark Training
1,495.00
Dates:
Quantity:
Add To Cart